Release Info

Advisory: CLSA-2025:1765547744

OS: Debian 12

Public date: 2025-12-12 13:55:46.903528

Project: nodejs

Version: 12.22.12-10

Errata link: https://errata.tuxcare.com/els_alt_nodejs/debian12/CLSA-2025-1765547744.html

Changelog

* SECURITY UPDATE: Node.js SignTraits::DeriveBits() remote crash vulnerability - debian/patches/CVE-2024-22019.patch: fix improper exception handling in SignTraits::DeriveBits() that could lead to remote denial of service (process crash) when malformed input is processed - CVE-2024-22019

Update

Update command: apt-get update apt-get --only-upgrade install alt-nodejs*

Packages list

alt-nodejs12-docs_12.22.12-10_amd64.deb alt-nodejs12-nodejs_12.22.12-10_amd64.deb alt-nodejs12-nodejs-devel_12.22.12-10_amd64.deb alt-nodejs12-npm_6.14.16-12.22.12.10_amd64.deb

CVEs

CVE-2024-22019