nodejs security update

🗓️ 14 Jun 2024 14:00:40Reported by Rockylinux Product ErrataType

rocky

rocky🔗 errata.rockylinux.org👁 36 Views

NodeJS security update affects Rocky Linux 9 with multiple CVE vulnerabilitie

Reporter	Title	Published	Views	Family All 876
IBM Security Bulletins	Security Bulletin: IBM Watson Assistant for IBM Cloud Pak for Data is vulnerable to Node.js vulnerabilities [ CVE-2024-27982, CVE-2024-27983]	4 Feb 202519:31	–	ibm
IBM Security Bulletins	Security Bulletin: Node.js vulnerabilities affect IBM Spectrum Control	8 Jul 202409:24	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Technical Support Appliance - possible excessive use of CPU	6 Feb 202520:54	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities have been identified with the DS8900F and DS8A00 Hardware Management Console (HMC)	3 Mar 202600:44	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerabilities in Node.js and packages affect IBM Voice Gateway	17 May 202413:55	–	ibm
IBM Security Bulletins	Security Bulletin: IBM QRadar Network Packet Capture includes components with multiple known vulnerabilities	4 Feb 202520:41	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerabilities in Node.js affect IBM Voice Gateway	1 Apr 202418:28	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data is vulnerable to multiple Base OS issues	8 Aug 202417:29	–	ibm
IBM Security Bulletins	Security Bulletin: IBM QRadar SIEM contains multiple vulnerabilities	18 Sep 202410:14	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Watson Discovery for IBM Cloud Pak for Data affected by vulnerability in Node.js	5 Jun 202401:55	–	ibm

OS	OS Version	Architecture	Package	Package Version	Filename
Rocky Linux	9	aarch64	nodejs	1:16.20.2-8.el9_4	nodejs-1:16.20.2-8.el9_4.aarch64.rpm
Rocky Linux	9	ppc64le	nodejs	1:16.20.2-8.el9_4	nodejs-1:16.20.2-8.el9_4.ppc64le.rpm
Rocky Linux	9	s390x	nodejs	1:16.20.2-8.el9_4	nodejs-1:16.20.2-8.el9_4.s390x.rpm
Rocky Linux	9	x86_64	nodejs	1:16.20.2-8.el9_4	nodejs-1:16.20.2-8.el9_4.x86_64.rpm
Rocky Linux	9	aarch64	nodejs-debuginfo	1:16.20.2-8.el9_4	nodejs-debuginfo-1:16.20.2-8.el9_4.aarch64.rpm
Rocky Linux	9	ppc64le	nodejs-debuginfo	1:16.20.2-8.el9_4	nodejs-debuginfo-1:16.20.2-8.el9_4.ppc64le.rpm
Rocky Linux	9	s390x	nodejs-debuginfo	1:16.20.2-8.el9_4	nodejs-debuginfo-1:16.20.2-8.el9_4.s390x.rpm
Rocky Linux	9	x86_64	nodejs-debuginfo	1:16.20.2-8.el9_4	nodejs-debuginfo-1:16.20.2-8.el9_4.x86_64.rpm
Rocky Linux	9	aarch64	nodejs-debugsource	1:16.20.2-8.el9_4	nodejs-debugsource-1:16.20.2-8.el9_4.aarch64.rpm
Rocky Linux	9	ppc64le	nodejs-debugsource	1:16.20.2-8.el9_4	nodejs-debugsource-1:16.20.2-8.el9_4.ppc64le.rpm

14 Jun 2024 14:00Current

5.8Medium risk

Vulners AI Score5.8

CVSS 38.2

CVSS 3.15.3 - 5.5

EPSS0.75933

SSVC

nodejs security update rocky linux 9 cve vulnerabilities cvss unix