RHSA-2024:2780

See a problem?
Please try reporting it to the source first.

Source

https://access.redhat.com/errata/RHSA-2024:2780

Import Source

https://security.access.redhat.com/data/osv/RHSA-2024:2780.json

JSON Data

https://api.osv.dev/v1/vulns/RHSA-2024:2780

Upstream

CVE-2024-22025

CVE-2024-25629

CVE-2024-27982

CVE-2024-27983

CVE-2024-28182

Published

2024-09-16T19:10:21Z

Modified

2025-09-13T10:07:25Z

Severity

7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator

Summary

Red Hat Security Advisory: nodejs:18 security update

Details

References

Affected packages

Red Hat:enterprise_linux:8::appstream / nodejs-18.20.2

Package

Name: nodejs-18.20.2
Purl: pkg:rpm/redhat/nodejs

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.module+el8.9.0+21767+537f34ee.x86_64

Red Hat:enterprise_linux:8::appstream / nodejs-debuginfo-18.20.2

Package

Name: nodejs-debuginfo-18.20.2
Purl: pkg:rpm/redhat/nodejs-debuginfo

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.module+el8.9.0+21767+537f34ee.x86_64

Red Hat:enterprise_linux:8::appstream / nodejs-debugsource-18.20.2

Package

Name: nodejs-debugsource-18.20.2
Purl: pkg:rpm/redhat/nodejs-debugsource

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.module+el8.9.0+21767+537f34ee.x86_64

Red Hat:enterprise_linux:8::appstream / nodejs-devel-18.20.2

Package

Name: nodejs-devel-18.20.2
Purl: pkg:rpm/redhat/nodejs-devel

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.module+el8.9.0+21767+537f34ee.x86_64

Red Hat:enterprise_linux:8::appstream / nodejs-docs-18.20.2

Package

Name: nodejs-docs-18.20.2
Purl: pkg:rpm/redhat/nodejs-docs

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.module+el8.9.0+21767+537f34ee.noarch

Red Hat:enterprise_linux:8::appstream / nodejs-full-i18n-18.20.2

Package

Name: nodejs-full-i18n-18.20.2
Purl: pkg:rpm/redhat/nodejs-full-i18n

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.module+el8.9.0+21767+537f34ee.x86_64

Red Hat:enterprise_linux:8::appstream / nodejs-nodemon-3.0.1

Package

Name: nodejs-nodemon-3.0.1
Purl: pkg:rpm/redhat/nodejs-nodemon

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.module+el8.9.0+21190+5ebd2c33.src

Red Hat:enterprise_linux:8::appstream / nodejs-packaging-2021.06

Package

Name: nodejs-packaging-2021.06
Purl: pkg:rpm/redhat/nodejs-packaging

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.module+el8.9.0+21190+5ebd2c33.src

Red Hat:enterprise_linux:8::appstream / nodejs-packaging-bundler-2021.06

Package

Name: nodejs-packaging-bundler-2021.06
Purl: pkg:rpm/redhat/nodejs-packaging-bundler

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.module+el8.9.0+21190+5ebd2c33.noarch

Red Hat:enterprise_linux:8::appstream / npm-10.5.0

Package

Name: npm-10.5.0
Purl: pkg:rpm/redhat/npm

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.18.20.2.1.module+el8.9.0+21767+537f34ee.x86_64