RHSA-2024:2853

See a problem?
Please try reporting it to the source first.

Source

https://access.redhat.com/errata/RHSA-2024:2853

Import Source

https://security.access.redhat.com/data/osv/RHSA-2024:2853.json

JSON Data

https://api.osv.dev/v1/vulns/RHSA-2024:2853

Upstream

CVE-2024-22025

CVE-2024-25629

CVE-2024-27982

CVE-2024-27983

CVE-2024-28182

Published

2024-09-16T19:10:30Z

Modified

2025-09-13T10:07:27Z

Severity

7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator

Summary

Red Hat Security Advisory: nodejs:20 security update

Details

References

Affected packages

Red Hat:enterprise_linux:9::appstream / nodejs-20.12.2

Package

Name: nodejs-20.12.2
Purl: pkg:rpm/redhat/nodejs

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.module+el9.4.0+21731+46b5b8a7.x86_64

Red Hat:enterprise_linux:9::appstream / nodejs-debuginfo-20.12.2

Package

Name: nodejs-debuginfo-20.12.2
Purl: pkg:rpm/redhat/nodejs-debuginfo

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.module+el9.4.0+21731+46b5b8a7.x86_64

Red Hat:enterprise_linux:9::appstream / nodejs-debugsource-20.12.2

Package

Name: nodejs-debugsource-20.12.2
Purl: pkg:rpm/redhat/nodejs-debugsource

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.module+el9.4.0+21731+46b5b8a7.x86_64

Red Hat:enterprise_linux:9::appstream / nodejs-devel-20.12.2

Package

Name: nodejs-devel-20.12.2
Purl: pkg:rpm/redhat/nodejs-devel

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.module+el9.4.0+21731+46b5b8a7.x86_64

Red Hat:enterprise_linux:9::appstream / nodejs-docs-20.12.2

Package

Name: nodejs-docs-20.12.2
Purl: pkg:rpm/redhat/nodejs-docs

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.module+el9.4.0+21731+46b5b8a7.noarch

Red Hat:enterprise_linux:9::appstream / nodejs-full-i18n-20.12.2

Package

Name: nodejs-full-i18n-20.12.2
Purl: pkg:rpm/redhat/nodejs-full-i18n

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.module+el9.4.0+21731+46b5b8a7.x86_64

Red Hat:enterprise_linux:9::appstream / nodejs-nodemon-3.0.1

Package

Name: nodejs-nodemon-3.0.1
Purl: pkg:rpm/redhat/nodejs-nodemon

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.module+el9.3.0.z+20478+84a9f781.src

Red Hat:enterprise_linux:9::appstream / nodejs-packaging-2021.06

Package

Name: nodejs-packaging-2021.06
Purl: pkg:rpm/redhat/nodejs-packaging

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.module+el9.3.0+19518+63aad52d.src

Red Hat:enterprise_linux:9::appstream / nodejs-packaging-bundler-2021.06

Package

Name: nodejs-packaging-bundler-2021.06
Purl: pkg:rpm/redhat/nodejs-packaging-bundler

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.module+el9.3.0+19518+63aad52d.noarch

Red Hat:enterprise_linux:9::appstream / npm-10.5.0

Package

Name: npm-10.5.0
Purl: pkg:rpm/redhat/npm

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.20.12.2.2.module+el9.4.0+21731+46b5b8a7.x86_64