ALSA-2025:4461

[ALSA-2025:4461] Moderate: nodejs:20 security update

Type:

security

Severity:

moderate

Release date:

2025-05-06

Description:

Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language.   

Security Fix(es):  

  * c-ares: c-ares has a use-after-free in read_answers() (CVE-2025-31498)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References:

Updated packages listed below:

Architecture	Package	Checksum
aarch64	npm-10.8.2-1.20.19.1.1.module_el8.10.0+3987+dbda4426.aarch64.rpm	3be4c7c53704e0fc06a0730b3a385c9f8087be08751a1ea52714eb106ce5e566
aarch64	nodejs-20.19.1-1.module_el8.10.0+3987+dbda4426.aarch64.rpm	4482054c50387f589436e06c14659951a5827e8cc16d93e28d0cd32c1809a3ee
aarch64	nodejs-devel-20.19.1-1.module_el8.10.0+3987+dbda4426.aarch64.rpm	6deea2e9f17bf366e02dd49ff24915104a2ea2e3119523fd71b2130da8c2542c
aarch64	nodejs-full-i18n-20.19.1-1.module_el8.10.0+3987+dbda4426.aarch64.rpm	97f7c87e2d19365886b6a50cda33f4477a9249fef6244f6ea8318dad894da456
noarch	nodejs-nodemon-3.0.1-1.module_el8.10.0+3982+85c136aa.noarch.rpm	2a3ac075981f56758aac0aa08cc55d71f2ca6610e6bc965f306dd6b9a8db442a
noarch	nodejs-packaging-2021.06-4.module_el8.10.0+3987+dbda4426.noarch.rpm	6a479cd49298404b833454d884d50275fdbaebeba78691f37251b420f9b76d71
noarch	nodejs-docs-20.19.1-1.module_el8.10.0+3987+dbda4426.noarch.rpm	a25507e63be403d0bf09d9e0147207fbb4001722be4ae110175a57a7a197ae64
noarch	nodejs-packaging-bundler-2021.06-4.module_el8.10.0+3958+472a6467.noarch.rpm	af48fab85994e826d5a0ca5a05df770fb8e54b94556401a5c6a6844f4c6dce64
ppc64le	nodejs-20.19.1-1.module_el8.10.0+3987+dbda4426.ppc64le.rpm	aae3c86db228322afdf59bd7039231e28b3f45e3170f62dd2a68517fa5fe603d
ppc64le	nodejs-full-i18n-20.19.1-1.module_el8.10.0+3987+dbda4426.ppc64le.rpm	d8f0bc624082ab01228c5e25c93f3563e6b04acf7e577dadfc24b10e31a81d09
ppc64le	npm-10.8.2-1.20.19.1.1.module_el8.10.0+3987+dbda4426.ppc64le.rpm	e432814977fd427c32eb1782e8d45dfeac9b5febd3679ca645617b87daa44f9b
ppc64le	nodejs-devel-20.19.1-1.module_el8.10.0+3987+dbda4426.ppc64le.rpm	fd5ab35b559af5c435de20a0a4d47aef3c66f263986a521fadb672847880df77
s390x	nodejs-full-i18n-20.19.1-1.module_el8.10.0+3987+dbda4426.s390x.rpm	4253066674558fffa03564e97e389d3a46c553b266eb82b3cf3df87de36ea6da
s390x	nodejs-devel-20.19.1-1.module_el8.10.0+3987+dbda4426.s390x.rpm	ac8440bbbe9f61dcee99c09fbcb51e9d677d8a69c960e1cfea4b2878c462a87f
s390x	nodejs-20.19.1-1.module_el8.10.0+3987+dbda4426.s390x.rpm	cfe7db51e842d73571d2f5c08a103a50008e10b4fff0f72fa98631ba661a675f
s390x	npm-10.8.2-1.20.19.1.1.module_el8.10.0+3987+dbda4426.s390x.rpm	d24b91636ed09a9cdf9800d4e1d155b62b2ecb14bc92fa7cdd76b323ec231068
x86_64	npm-10.8.2-1.20.19.1.1.module_el8.10.0+3987+dbda4426.x86_64.rpm	7cc49452379b2896dc689419a5117b6aca2d124d02c31bf58059cfc4e877ae89
x86_64	nodejs-full-i18n-20.19.1-1.module_el8.10.0+3987+dbda4426.x86_64.rpm	9fafee014c151b88a5dccd5c56d6aca1d40ac3243c04b4c2026e575e5961447c
x86_64	nodejs-20.19.1-1.module_el8.10.0+3987+dbda4426.x86_64.rpm	c343c8b66a496538952f5a9d3ed2712f027c30706681be2ea115f8090022b243
x86_64	nodejs-devel-20.19.1-1.module_el8.10.0+3987+dbda4426.x86_64.rpm	c35613e6cead8e607b32afa80d7eaa081bc3531a4a047156f225f95f48bb04f4

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.