ROOT-OS-DEBIAN-11-CVE-2025-21714 CVE-2025-21714 in rootio-linux - Patched by Root

Root has patched CVE-2025-21714 in the rootio-linux package for Root:Debian:11. Multiple fixed versions available...

ROOT-OS-UBUNTU-2204-CVE-2025-21714 CVE-2025-21714 in rootio-linux - Patched by Root

Root has patched CVE-2025-21714 in the rootio-linux package for Root:Ubuntu:22.04. Multiple fixed versions available...

Debian dla-4598 : libnode-dev - security update

The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-4598 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-4598-1 [email protected]...

SUSE CVE-2026-21714

A memory leak occurs in Node.js HTTP/2 servers when a client sends WINDOWUPDATE frames on stream 0 connection-level that cause the flow control window to exceed the maximum value of 2��-1. The server correctly sends a GOAWAY frame, but the Http2Session object is never cleaned up. This vulnerabili...

SUSE-SU-2026:1299-1 Security update for nodejs24

This update for nodejs24 fixes the following issues: - Update to 24.14.1 - CVE-2026-21637: synchronous exceptions thrown during certain callbacks bypass the standard TLS error handling paths and can cause a denial of service bsc1256576. - CVE-2026-21710: uncaught TypeError exception can cause a...

CVE-2026-21714 vulnerabilities

Vulnerabilities for packages: nodejs...

Photon OS 4.0: Nodejs PHSA-2026-4.0-0995

An update of the nodejs package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2026-4.0-0995. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

CVE-2026-21714 affecting package nodejs for versions less than 20.14.0-15

CVE-2026-21714 affecting package nodejs for versions less than 20.14.0-15. A patched version of the package is available...

BELL-CVE-2026-21714

Bulletin has no description...

CVE-2026-21714

creationtimestamp| type| source ---|---|--- 2026-03-25 03:00:00+00:00| seen| https://www.hkcert.org/security-bulletin/node-js-multiple-vulnerabilities20260325 2026-03-30 20:02:01+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3michdhvana2g...

Linux Distros Unpatched Vulnerability : CVE-2026-21714

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A memory leak occurs in Node.js HTTP/2 servers when a client sends WINDOWUPDATE frames on stream 0 connection-level that cause the flow control window to exceed...

PT-2026-28318

Name of the Vulnerable Software and Affected Versions Node.js versions 20 through 25 Description A memory leak can occur in Node.js HTTP/2 servers when a client sends WINDOW UPDATE frames on stream 0 connection-level that cause the flow control window to exceed the maximum value of 2³¹-1. The...

Photon OS 5.0: Linux PHSA-2025-5.0-0512

An update of the linux package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2025-5.0-0512. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

SUSE SLES15 Security Update : kernel (SUSE-SU-2025:1195-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:1195-1 advisory. The SUSE Linux Enterprise 15 SP4 kernel was updated to receive various security bugfixes. The following security bugs were fixed: -...

Linux Distros Unpatched Vulnerability : CVE-2025-21714

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - RDMA/mlx5: Fix implicit ODP use after free Prevent double queueing of implicit ODP mr destroy work by using xacmpxchg to make sure this is the only time we are...

CVE-2025-21714

creationtimestamp| type| source ---|---|--- 2025-02-27 04:30:29+00:00| seen| https://t.me/cvedetector/18990 2026-03-19 00:00:00+00:00| seen| https://www.cert.ssi.gouv.fr/avis/CERTFR-2026-AVI-0316/...

AZL-59034 CVE-2025-21714 affecting package kernel 5.15.200.1-1

In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx5: Fix implicit ODP use after free Prevent double queueing of implicit ODP mr destroy work by using xacmpxchg to make sure this is the only time we are destroying this specific mr. Without this change, we could try to...

CVE-2025-21714

In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx5: Fix implicit ODP use after free Prevent double queueing of implicit ODP mr destroy work by using xacmpxchg to make sure this is the only time we are destroying this specific mr. Without this change, we could try to...

CVE-2025-21714

CVE-2025-21714 : Linux kernel RDMA/mlx5: fix implicit ODP use after free. The issue could lead to invalidating the MR twice, queuing MR destroy work twice, and a race where the second work runs after the first freed MR, causing a user-after-free and refcount underflow. The fix uses __xa_cmpxchg()...

CVE-2025-21714

In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx5: Fix implicit ODP use after free Prevent double queueing of implicit ODP mr destroy work by using xacmpxchg to make sure this is the only time we are destroying this specific mr. Without this change, we could try to...