nodejs:20 security update

🗓️ 18 Feb 2026 00:00:00Reported by OracleLinuxType

oraclelinux

oraclelinux🔗 linux.oracle.com👁 5 Views

Update Node.js to 20.20.0; patch bundled glob-parent and apply security fixes.

Reporter	Title	Published	Views	Family All 1222
IBM Security Bulletins	Security Bulletin: IBM i Modernization Engine for Lifecycle Integration is vulnerable to multiple vulnerabilities	16 May 202420:23	–	ibm
IBM Security Bulletins	Security Bulletin: IBM QRadar Wincollect is vulnerable to using components with known vulnerabilities	22 Nov 202315:32	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Watson Discovery for IBM Cloud Pak for Data affected by vulnerability in Node.js	30 Nov 202116:26	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerabilities in Marked, Minimatch and Logback might affect IBM Storage Defender Copy Data Management	26 Sep 202519:29	–	ibm
IBM Security Bulletins	Security Bulletin: IBM InfoSphere Information Server is affected by a vulnerability in Node.js semver (CVE-2022-25883)	28 Nov 202323:00	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Watson Discovery Cartridge for IBM Cloud Pak for Data affected by vulnerability in Node.js	27 Sep 202321:08	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Cognos Analytics Mobile (Android) is affected by multiple vulnerabilities	21 Oct 202415:52	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Watson Assistant for IBM Cloud Pak for Data is vulnerable to minimatch denial of service (CVE-2022-3517)	7 Dec 202220:26	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Cloud Pak for Network Automation 2.6.2 fixes multiple security vulnerabilities	6 Oct 202316:11	–	ibm
IBM Security Bulletins	Security Bulletin: A vulnerability in minimatch may affect IBM Robotic Process Automation and result in a denial of service (CVE-2022-3517)	25 Jan 202320:41	–	ibm

OS	OS Version	Architecture	Package	Package Version	Filename
oracle linux	9	src	nodejs	20.20.0-1.module	nodejs-20.20.0-1.module+el9.7.0+90815+f9676ed4.src.rpm
oracle linux	9	src	nodejs-nodemon	3.0.1-1.module	nodejs-nodemon-3.0.1-1.module+el9.7.0+90815+f9676ed4.src.rpm
oracle linux	9	src	nodejs-packaging	2021.06-5.module	nodejs-packaging-2021.06-5.module+el9.7.0+90815+f9676ed4.src.rpm
oracle linux	9	aarch64	nodejs	20.20.0-1.module	nodejs-20.20.0-1.module+el9.7.0+90815+f9676ed4.aarch64.rpm
oracle linux	9	aarch64	nodejs-devel	20.20.0-1.module	nodejs-devel-20.20.0-1.module+el9.7.0+90815+f9676ed4.aarch64.rpm
oracle linux	9	noarch	nodejs-docs	20.20.0-1.module	nodejs-docs-20.20.0-1.module+el9.7.0+90815+f9676ed4.noarch.rpm
oracle linux	9	aarch64	nodejs-full-i18n	20.20.0-1.module	nodejs-full-i18n-20.20.0-1.module+el9.7.0+90815+f9676ed4.aarch64.rpm
oracle linux	9	noarch	nodejs-nodemon	3.0.1-1.module	nodejs-nodemon-3.0.1-1.module+el9.7.0+90815+f9676ed4.noarch.rpm
oracle linux	9	noarch	nodejs-packaging	2021.06-5.module	nodejs-packaging-2021.06-5.module+el9.7.0+90815+f9676ed4.noarch.rpm
oracle linux	9	noarch	nodejs-packaging-bundler	2021.06-5.module	nodejs-packaging-bundler-2021.06-5.module+el9.7.0+90815+f9676ed4.noarch.rpm

18 Feb 2026 00:00Current

5.5Medium risk

Vulners AI Score5.5

CVSS 3.19.1

CVSS 37.5

EPSS0.00964

SSVC

nodejs nodemon security update glob parent patch rebase to version