4389 matches found
Oracle Linux 10 : nodejs22 (ELSA-2026-1843)
The remote Oracle Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-1843 advisory. 1:22.22.0-3 - Bump release to get correct RHEL build 1:22.22.0-2 - Filter for nodejs22.fmf in gating plan 1:22.22.0-1 - Update to 22.22.0 1:22.19.0-3 ...
CVE-2026-25547
@isaacs/brace-expansion is a hybrid CJS/ESM TypeScript fork of brace-expansion. Prior to version 5.0.1, @isaacs/brace-expansion is vulnerable to a denial of service DoS issue caused by unbounded brace range expansion. When an attacker provides a pattern containing repeated numeric brace ranges, t...
nodejs22 security update
1:22.22.0-3 - Bump release to get correct RHEL build 1:22.22.0-2 - Filter for nodejs22.fmf in gating plan 1:22.22.0-1 - Update to 22.22.0 1:22.19.0-3 - Unit-tests adjustment - disable internet/test-dgram-membership...
PT-2026-6213
Name of the Vulnerable Software and Affected Versions Compressing versions 1.10.3 and prior Compressing version 2.0.0 Description Compressing, a compressing and uncompressing library for Node.js, does not validate symbolic link targets when extracting TAR archives. This allows an attacker to embe...
ALSA-2026:1842 Important: nodejs24 security update
Node.js is a platform built on Chrome's JavaScript runtime for easily building fast, scalable network applications. Node.js uses an event-driven, non-blocking I/O model that makes it lightweight and efficient, perfect for data-intensive real-time applications that run across distributed devices...
ALSA-2026:1843 Important: nodejs22 security update
Node.js is a platform built on Chrome's JavaScript runtime \ for easily building fast, scalable network applications. \ Node.js uses an event-driven, non-blocking I/O model that \ makes it lightweight and efficient, perfect for data-intensive \ real-time applications that run across distributed...
Critical Photon OS Security Update - PHSA-2026-4.0-0956
Updates of 'nodejs', 'expat' packages of Photon OS have been released...
@haxtheweb/create (>=0.1.3 <=26.0.0), @haxtheweb/haxcms-nodejs (>=0.0.2 <=25.0.0) +3 more potentially affected by CVE-2026-25521 via locutus (>=2.0.14 <=2.0.32)
locutus NPM version =2.0.14, =0.1.3, =0.0.2, =11.0.2, =2.1.1, =1.0.66, =1.0.72 Source cves: CVE-2026-25521 Source advisory: SNYK:JS-LOCUTUS-15182766...
GHSA-PM9V-WCW9-XGPV vulnerabilities
Vulnerabilities for packages: nodejs...
GHSA-7XHV-HCMF-4RFV vulnerabilities
Vulnerabilities for packages: nodejs...
GHSA-62WC-JJ78-F4F6 vulnerabilities
Vulnerabilities for packages: nodejs...
GHSA-38M8-39F8-GQ75 vulnerabilities
Vulnerabilities for packages: nodejs...
CVE-2025-59464 vulnerabilities
Vulnerabilities for packages: nodejs...
CVE-2025-55132 vulnerabilities
Vulnerabilities for packages: nodejs...
CVE-2025-55130 vulnerabilities
Vulnerabilities for packages: nodejs...
CVE-2026-21636 vulnerabilities
Vulnerabilities for packages: nodejs...
GHSA-PM9V-WCW9-XGPV vulnerabilities
Vulnerabilities for packages: nodejs...
GHSA-7XHV-HCMF-4RFV vulnerabilities
Vulnerabilities for packages: nodejs...
GHSA-62WC-JJ78-F4F6 vulnerabilities
Vulnerabilities for packages: nodejs...
GHSA-38M8-39F8-GQ75 vulnerabilities
Vulnerabilities for packages: nodejs...