Release Info

Advisory: CLSA-2025:1765977280

OS: Debian 12

Public date: 2025-12-17 13:14:42.459645

Project: nodejs

Version: 12.22.12-14

Errata link: https://errata.tuxcare.com/els_alt_nodejs/debian12/CLSA-2025-1765977280.html

Changelog

* SECURITY UPDATE: Node.js zlib denial of service vulnerability - debian/patches/CVE-2024-22025.patch: pause stream if outgoing buffer is full to prevent resource exhaustion during decompression - CVE-2024-22025

Update

Update command: apt-get update apt-get --only-upgrade install alt-nodejs*

Packages list

alt-nodejs12-docs_12.22.12-14_amd64.deb alt-nodejs12-nodejs_12.22.12-14_amd64.deb alt-nodejs12-nodejs-devel_12.22.12-14_amd64.deb alt-nodejs12-npm_6.14.16-12.22.12.14_amd64.deb

CVEs

CVE-2024-22025
CVE-2023-46809