nodejs:16 security, bug fix, and enhancement update

🗓️ 16 Dec 2021 00:00:00Reported by OracleLinuxType

oraclelinux

oraclelinux🔗 linux.oracle.com👁 58 Views

Node.js 16 security and enhancement updat

Reporter	Title	Published	Views	Family All 735
IBM Security Bulletins	Security Bulletin: IBM QRadar Deployment Intelligence app for IBM QRadar SIEM is vulnerable to using components with known vulnerabilities	24 May 202218:37	–	ibm
IBM Security Bulletins	Security Bulletin: IBM DataPower Gateway potentially affected by various vulnerabilities in Node	29 Jul 202218:33	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Planning Analytics Workspace is affected by security vulnerabilities	23 Nov 202115:54	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Watson Discovery for IBM Cloud Pak for Data affected by vulnerability in Node.js	17 Dec 202104:21	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple Vulnerabilities in CloudPak for Watson AIOPs	25 Oct 202214:32	–	ibm
IBM Security Bulletins	Security Bulletin: A security vulnerability in Node.js glob-parent module affects IBM Cloud Automation Manager.	11 May 202114:53	–	ibm
IBM Security Bulletins	Security Bulletin: Critical Vulnerabilities in libraries used by libraries that IBM Spectrum discover is using (libraries of libraries)	28 Mar 202216:33	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Cloud Pak for Multicloud Management Monitoring is vulnerable to multiple security vulnerabilities due to its use of NodeJS (CVE-2021-22918, CVE-2021-22960, CVE-2021-22959)	15 Jul 202215:47	–	ibm
IBM Security Bulletins	Security Bulletin: Security Vulnerabilities in moment, ansi-regex, Node.js, and minimatch may affect IBM Spectrum Protect Client and IBM Spectrum Protect for Space Management (CVE-2022-31129, CVE-2022-24785, CVE-2021-3807, CVE-2022-29244, CVE-2022-3517)	17 Mar 202309:26	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Cloud Transformation Advisor is affected by Node.js vulnerability	23 Jun 202113:21	–	ibm

OS	OS Version	Architecture	Package	Package Version	Filename
oracle linux	8	src	nodejs	16.13.1-3.0.1.module	nodejs-16.13.1-3.0.1.module+el8.5.0+20457+52828f44.src.rpm
oracle linux	8	src	nodejs-nodemon	2.0.15-1.module	nodejs-nodemon-2.0.15-1.module+el8.5.0+20457+52828f44.src.rpm
oracle linux	8	src	nodejs-packaging	25-1.module	nodejs-packaging-25-1.module+el8.5.0+20388+4b61e68d.src.rpm
oracle linux	8	aarch64	nodejs	16.13.1-3.0.1.module	nodejs-16.13.1-3.0.1.module+el8.5.0+20457+52828f44.aarch64.rpm
oracle linux	8	aarch64	nodejs-devel	16.13.1-3.0.1.module	nodejs-devel-16.13.1-3.0.1.module+el8.5.0+20457+52828f44.aarch64.rpm
oracle linux	8	noarch	nodejs-docs	16.13.1-3.0.1.module	nodejs-docs-16.13.1-3.0.1.module+el8.5.0+20457+52828f44.noarch.rpm
oracle linux	8	aarch64	nodejs-full-i18n	16.13.1-3.0.1.module	nodejs-full-i18n-16.13.1-3.0.1.module+el8.5.0+20457+52828f44.aarch64.rpm
oracle linux	8	noarch	nodejs-nodemon	2.0.15-1.module	nodejs-nodemon-2.0.15-1.module+el8.5.0+20457+52828f44.noarch.rpm
oracle linux	8	noarch	nodejs-packaging	25-1.module	nodejs-packaging-25-1.module+el8.5.0+20388+4b61e68d.noarch.rpm
oracle linux	8	aarch64	npm	8.1.2-1.16.13.1.3.0.1.module	npm-8.1.2-1.16.13.1.3.0.1.module+el8.5.0+20457+52828f44.aarch64.rpm

16 Dec 2021 00:00Current

2.1Low risk

Vulners AI Score2.1

CVSS 27.8

CVSS 3.17.3 - 9.8

CVSS 39.8

EPSS0.01262

node.js security update bug fix enhancement unix cve-2020-28469 node-gyp npm version