Oracle Linux 6134 Published by

A nodejs:16 security, bug fix, and enhancement update has been released for Oracle Linux 8.



El-errata: ELSA-2023-1582 Moderate: Oracle Linux 8 nodejs:16 security, bug fix, and enhancement update


Oracle Linux Security Advisory ELSA-2023-1582

  http://linux.oracle.com/errata/ELSA-2023-1582.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
nodejs-16.19.1-1.module+el8.7.0+21021+1eb7f63d.x86_64.rpm
nodejs-devel-16.19.1-1.module+el8.7.0+21021+1eb7f63d.x86_64.rpm
nodejs-docs-16.19.1-1.module+el8.7.0+21021+1eb7f63d.noarch.rpm
nodejs-full-i18n-16.19.1-1.module+el8.7.0+21021+1eb7f63d.x86_64.rpm
nodejs-nodemon-2.0.20-3.module+el8.7.0+21021+1eb7f63d.noarch.rpm
nodejs-packaging-25-1.module+el8.5.0+20388+4b61e68d.noarch.rpm
npm-8.19.3-1.16.19.1.1.module+el8.7.0+21021+1eb7f63d.x86_64.rpm
nodejs-16.19.1-1.module+el8.7.0+21021+1eb7f63d.x86_64.rpm
nodejs-devel-16.19.1-1.module+el8.7.0+21021+1eb7f63d.x86_64.rpm
nodejs-docs-16.19.1-1.module+el8.7.0+21021+1eb7f63d.noarch.rpm
nodejs-full-i18n-16.19.1-1.module+el8.7.0+21021+1eb7f63d.x86_64.rpm
nodejs-nodemon-2.0.20-3.module+el8.7.0+21021+1eb7f63d.noarch.rpm
nodejs-packaging-25-1.module+el8.5.0+20388+4b61e68d.noarch.rpm
npm-8.19.3-1.16.19.1.1.module+el8.7.0+21021+1eb7f63d.x86_64.rpm

aarch64:
nodejs-16.19.1-1.module+el8.7.0+21021+1eb7f63d.aarch64.rpm
nodejs-devel-16.19.1-1.module+el8.7.0+21021+1eb7f63d.aarch64.rpm
nodejs-docs-16.19.1-1.module+el8.7.0+21021+1eb7f63d.noarch.rpm
nodejs-full-i18n-16.19.1-1.module+el8.7.0+21021+1eb7f63d.aarch64.rpm
nodejs-nodemon-2.0.20-3.module+el8.7.0+21021+1eb7f63d.noarch.rpm
nodejs-packaging-25-1.module+el8.5.0+20388+4b61e68d.noarch.rpm
npm-8.19.3-1.16.19.1.1.module+el8.7.0+21021+1eb7f63d.aarch64.rpm
nodejs-16.19.1-1.module+el8.7.0+21021+1eb7f63d.aarch64.rpm
nodejs-devel-16.19.1-1.module+el8.7.0+21021+1eb7f63d.aarch64.rpm
nodejs-docs-16.19.1-1.module+el8.7.0+21021+1eb7f63d.noarch.rpm
nodejs-full-i18n-16.19.1-1.module+el8.7.0+21021+1eb7f63d.aarch64.rpm
nodejs-nodemon-2.0.20-3.module+el8.7.0+21021+1eb7f63d.noarch.rpm
nodejs-packaging-25-1.module+el8.5.0+20388+4b61e68d.noarch.rpm
npm-8.19.3-1.16.19.1.1.module+el8.7.0+21021+1eb7f63d.aarch64.rpm

SRPMS:
  http://oss.oracle.com/ol8/SRPMS-updates//nodejs-16.19.1-1.module+el8.7.0+21021+1eb7f63d.src.rpm
  http://oss.oracle.com/ol8/SRPMS-updates//nodejs-nodemon-2.0.20-3.module+el8.7.0+21021+1eb7f63d.src.rpm
  http://oss.oracle.com/ol8/SRPMS-updates//nodejs-packaging-25-1.module+el8.5.0+20388+4b61e68d.src.rpm
  http://oss.oracle.com/ol8/SRPMS-updates//nodejs-16.19.1-1.module+el8.7.0+21021+1eb7f63d.src.rpm
  http://oss.oracle.com/ol8/SRPMS-updates//nodejs-nodemon-2.0.20-3.module+el8.7.0+21021+1eb7f63d.src.rpm
  http://oss.oracle.com/ol8/SRPMS-updates//nodejs-packaging-25-1.module+el8.5.0+20388+4b61e68d.src.rpm

Related CVEs:

CVE-2021-35065
CVE-2022-4904
CVE-2022-25881
CVE-2023-23918
CVE-2023-23919
CVE-2023-23920
CVE-2023-23936
CVE-2023-24807



Description of changes:

nodejs
[1:16.19.1-1]
- Rebase to 16.19.1
Resolves: rhbz#2153713
Resolves: CVE-2023-23918 CVE-2023-23919 CVE-2023-23936 CVE-2023-24807 CVE-2023-23920
Resolves: CVE-2022-25881 CVE-2022-4904

nodejs-nodemon
[2.0.20-3]
- Patch bundled glob-parent
Resolves: CVE-2021-35065

_______________________________________________