Advisory: CLSA-2025:1764606755
OS: Ubuntu 22.04
Public date: 2025-12-01 16:32:37.940712
Project: nodejs
Version: 14.21.3-9
Errata link: https://errata.tuxcare.com/els_alt_nodejs/ubuntu22.04/CLSA-2025-1764606755.html
* SECURITY UPDATE: Node.js policy integrity check bypass vulnerability - debian/patches/CVE-2023-38552.patch: use tamper-proof integrity check function to prevent tampering with Hash class internals in policy mechanism - CVE-2023-38552
Update command: apt-get update apt-get --only-upgrade install alt-nodejs*
alt-nodejs14-docs_14.21.3-9_amd64.deb alt-nodejs14-nodejs_14.21.3-9_amd64.deb alt-nodejs14-nodejs-devel_14.21.3-9_amd64.deb alt-nodejs14-npm_6.14.18-14.21.3.9_amd64.deb