Fedora 41 Update: nodejs20-20.18.2-2.fc41
Fedora 41 Update: nodejs18-18.20.6-1.fc41
Fedora 41 Update: rust-routinator-0.14.1-2.fc41
[SECURITY] Fedora 41 Update: nodejs20-20.18.2-2.fc41
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-76fc32d433
2025-02-01 05:39:57.244926+00:00
--------------------------------------------------------------------------------
Name : nodejs20
Product : Fedora 41
Version : 20.18.2
Release : 2.fc41
URL : http://nodejs.org/
Summary : JavaScript runtime
Description :
Node.js is a platform built on Chrome's JavaScript runtime \
for easily building fast, scalable network applications. \
Node.js uses an event-driven, non-blocking I/O model that \
makes it lightweight and efficient, perfect for data-intensive \
real-time applications that run across distributed devices.}
--------------------------------------------------------------------------------
Update Information:
Rebase to 20.18.2
Resolves: CVE-2025-22150 CVE-2025-23085 CVE-2025-23083
--------------------------------------------------------------------------------
ChangeLog:
* Thu Jan 23 2025 Andrei Radchenko [aradchen@redhat.com] - 1:20.18.2-2
- Include correct contects of cstdint patch.
* Thu Jan 23 2025 Andrei Radchenko [aradchen@redhat.com] - 1:20.18.2-1
- Update to 20.18.2 (rhbz#2339190) (rhbz#2340937) (rhbz#2341715)
(rhbz#2341713)
* Fri Jan 17 2025 Fedora Release Engineering [releng@fedoraproject.org] - 1:20.18.1-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-76fc32d433' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--
[SECURITY] Fedora 41 Update: nodejs18-18.20.6-1.fc41
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-e330d34ecc
2025-02-01 05:39:57.244895+00:00
--------------------------------------------------------------------------------
Name : nodejs18
Product : Fedora 41
Version : 18.20.6
Release : 1.fc41
URL : http://nodejs.org/
Summary : JavaScript runtime
Description :
Node.js is a platform built on Chrome's JavaScript runtime \
for easily building fast, scalable network applications. \
Node.js uses an event-driven, non-blocking I/O model that \
makes it lightweight and efficient, perfect for data-intensive \
real-time applications that run across distributed devices.}
--------------------------------------------------------------------------------
Update Information:
Update to version 18.20.6 (rhbz#2341760) (rhbz#2340936) (rhbz#2300997)
Resolves CVE-2025-23084
--------------------------------------------------------------------------------
ChangeLog:
* Thu Jan 23 2025 Tomas Juhasz [tjuhasz@redhat.com] - 1:18.20.6-1
- Update to version 18.20.6 (rhbz#2341760) (rhbz#2340936) (rhbz#2300997)
* Fri Jan 17 2025 Fedora Release Engineering [releng@fedoraproject.org] - 1:18.20.2-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild
* Thu Jul 18 2024 Fedora Release Engineering [releng@fedoraproject.org] - 1:18.20.2-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_41_Mass_Rebuild
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-e330d34ecc' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--
[SECURITY] Fedora 41 Update: rust-routinator-0.14.1-2.fc41
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2025-bbabead4d7
2025-02-01 05:39:57.244861+00:00
--------------------------------------------------------------------------------
Name : rust-routinator
Product : Fedora 41
Version : 0.14.1
Release : 2.fc41
URL : https://crates.io/crates/routinator
Summary : RPKI relying party software
Description :
An RPKI relying party software.
--------------------------------------------------------------------------------
Update Information:
New
ASPA support is now always compiled in and available if enable-aspa is set. The
aspa Cargo feature has been removed. (#990)
If merging mutliple ASPA objects for a single customer ASN results in more than
16,380 provider ASNs, the ASPA is dropped. (Note that ASPA objects with more
than 16,380 provider ASNs are already rejected during parsing.) (#996)
New archive-stats command that shows some statistics of an RRDP archive. (#982)
Re-enabled the use of GZIP compression in HTTP request sent by the RRDP
collector. Measures to deal with exploding data have been implemented in rpki-
rs#319. (#997)
Bug fixes
Fixed an issue with checking the file names in manifests that let to a crash
when non-ASCII characters are used. (rpki-rs#320, reported by Haya Schulmann and
Niklas Vogel of Goethe University Frankfurt/ATHENE Center and assigned
CVE-2025-0638)
The validation HTTP endpoints now accept prefixes with non-zero host bits.
(#987)
Removed duplicate rtr_client_reset_queries in HTTP metrics. (#992 by @sleinen)
Improved disk space consumption of the new RRDP archives by re-using empty space
when updating an object and padding all objects to a multiple of 256 bytes.
(#982)
--------------------------------------------------------------------------------
ChangeLog:
* Thu Jan 23 2025 Michel Lind [salimma@fedoraproject.org] - 0.14.1-2
- Restore license list; use shrink for easier future diffing
* Thu Jan 23 2025 Michel Lind [salimma@fedoraproject.org] - 0.14.1-1
- Update to version 0.14.1; Fixes: RHBZ#2339650
* Sun Jan 19 2025 Fedora Release Engineering [releng@fedoraproject.org] - 0.14.0-5
- Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2339700 - CVE-2025-0638 rust-routinator: Routinator crashes when illegal characters are present in manifest file names [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2339700
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2025-bbabead4d7' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--
