摘要:
nodejs security update
安全等级: Critical
公告ID: KylinSec-SA-2023-1647
发布日期: 2023年9月2日
关联CVE: CVE-2022-25881 CVE-2022-25881 CVE-2022-32212 CVE-2022-32213 CVE-2022-32214 CVE-2022-32215 CVE-2022-35256 CVE-2023-23918 CVE-2023-23920 CVE-2023-30581 CVE-2023-30589 CVE-2023-30590 CVE-2023-32002 CVE-2023-32006 CVE-2023-32559
Node.js是一个基于Chrome的JavaScript运行时构建的平台,用于轻松构建快速、可扩展的网络应用程序。Node.js使用事件驱动的非阻塞I/O模型,使其轻量级和高效,非常适合跨分布式设备运行的数据密集型实时应用程序。
| cve名称 | 产品 | 组件 | 是否受影响 |
|---|---|---|---|
| CVE-2022-25881 | KY3.4-4A | cockpit | Unaffected |
| CVE-2022-25881 | KY3.4-5A | cockpit | Unaffected |
| CVE-2022-25881 | KY3.5.1 | cockpit | Unaffected |
| CVE-2022-25881 | KY3.5.2 | cockpit | Unaffected |
| CVE-2022-25881 | KY3.4-4A | nodejs | Fixed |
| CVE-2022-25881 | KY3.4-5A | nodejs | Fixed |
| CVE-2022-25881 | KY3.5.1 | nodejs | Fixed |
| CVE-2022-25881 | KY3.5.2 | nodejs | Fixed |
| CVE-2022-32212 | KY3.4-4A | nodejs | Fixed |
| CVE-2022-32212 | KY3.4-5A | nodejs | Fixed |
| CVE-2022-32212 | KY3.5.1 | nodejs | Fixed |
| CVE-2022-32212 | KY3.5.2 | nodejs | Fixed |
| CVE-2022-32213 | KY3.4-4A | nodejs | Fixed |
| CVE-2022-32213 | KY3.4-5A | nodejs | Fixed |
| CVE-2022-32213 | KY3.5.1 | nodejs | Fixed |
| CVE-2022-32213 | KY3.5.2 | nodejs | Fixed |
| CVE-2022-32214 | KY3.4-4A | nodejs | Fixed |
| CVE-2022-32214 | KY3.4-5A | nodejs | Fixed |
| CVE-2022-32214 | KY3.5.1 | nodejs | Fixed |
| CVE-2022-32214 | KY3.5.2 | nodejs | Fixed |
| CVE-2022-32215 | KY3.4-4A | nodejs | Fixed |
| CVE-2022-32215 | KY3.4-5A | nodejs | Fixed |
| CVE-2022-32215 | KY3.5.1 | nodejs | Fixed |
| CVE-2022-32215 | KY3.5.2 | nodejs | Fixed |
| CVE-2022-35256 | KY3.4-4A | nodejs | Fixed |
| CVE-2022-35256 | KY3.4-5A | nodejs | Fixed |
| CVE-2022-35256 | KY3.5.1 | nodejs | Fixed |
| CVE-2022-35256 | KY3.5.2 | nodejs | Fixed |
| CVE-2023-23918 | KY3.4-4A | nodejs | Fixed |
| CVE-2023-23918 | KY3.4-5A | nodejs | Fixed |
| CVE-2023-23918 | KY3.5.1 | nodejs | Fixed |
| CVE-2023-23918 | KY3.5.2 | nodejs | Fixed |
| CVE-2023-23920 | KY3.4-4A | nodejs | Fixed |
| CVE-2023-23920 | KY3.4-5A | nodejs | Fixed |
| CVE-2023-23920 | KY3.5.1 | nodejs | Fixed |
| CVE-2023-23920 | KY3.5.2 | nodejs | Fixed |
| CVE-2023-30581 | KY3.4-4A | nodejs | Fixed |
| CVE-2023-30581 | KY3.4-5A | nodejs | Fixed |
| CVE-2023-30581 | KY3.5.1 | nodejs | Fixed |
| CVE-2023-30581 | KY3.5.2 | nodejs | Fixed |
| CVE-2023-30589 | KY3.4-4A | nodejs | Fixed |
| CVE-2023-30589 | KY3.4-5A | nodejs | Fixed |
| CVE-2023-30589 | KY3.5.1 | nodejs | Fixed |
| CVE-2023-30589 | KY3.5.2 | nodejs | Fixed |
| CVE-2023-30590 | KY3.4-4A | nodejs | Fixed |
| CVE-2023-30590 | KY3.4-5A | nodejs | Fixed |
| CVE-2023-30590 | KY3.5.1 | nodejs | Fixed |
| CVE-2023-30590 | KY3.5.2 | nodejs | Fixed |
| CVE-2023-32002 | KY3.4-4A | nodejs | Fixed |
| CVE-2023-32002 | KY3.4-5A | nodejs | Fixed |
| CVE-2023-32002 | KY3.5.1 | nodejs | Fixed |
| CVE-2023-32002 | KY3.5.2 | nodejs | Fixed |
| CVE-2023-32006 | KY3.4-4A | nodejs | Fixed |
| CVE-2023-32006 | KY3.4-5A | nodejs | Fixed |
| CVE-2023-32006 | KY3.5.1 | nodejs | Fixed |
| CVE-2023-32006 | KY3.5.2 | nodejs | Fixed |
| CVE-2023-32559 | KY3.4-4A | nodejs | Fixed |
| CVE-2023-32559 | KY3.4-5A | nodejs | Fixed |
| CVE-2023-32559 | KY3.5.1 | nodejs | Fixed |
| CVE-2023-32559 | KY3.5.2 | nodejs | Fixed |
| 软件名称 | 架构 | 版本号 |
|---|---|---|
| nodejs-docs | noarch | 12.22.11-6.kb1.ky3_5 |
| v8-devel | x86_64 | 7.8.279.23-1.12.22.11.6.kb1.ky3_5 |
| nodejs | x86_64 | 12.22.11-6.kb1.ky3_5 |
| nodejs-devel | x86_64 | 12.22.11-6.kb1.ky3_5 |
| nodejs-libs | x86_64 | 12.22.11-6.kb1.ky3_5 |
| npm | x86_64 | 6.14.16-1.12.22.11.6.kb1.ky3_5 |
| nodejs-full-i18n | x86_64 | 12.22.11-6.kb1.ky3_5 |
| nodejs-devel | aarch64 | 12.22.11-6.kb1.ky3_5 |
| v8-devel | aarch64 | 7.8.279.23-1.12.22.11.6.kb1.ky3_5 |
| nodejs | aarch64 | 12.22.11-6.kb1.ky3_5 |
| nodejs-full-i18n | aarch64 | 12.22.11-6.kb1.ky3_5 |
| npm | aarch64 | 6.14.16-1.12.22.11.6.kb1.ky3_5 |
| nodejs-libs | aarch64 | 12.22.11-6.kb1.ky3_5 |
| 软件名称 | 架构 | 版本号 |
|---|---|---|
| nodejs-docs | noarch | 12.22.11-4.kb3.ky3_4 |
| nodejs | x86_64 | 12.22.11-4.kb3.ky3_4 |
| npm | x86_64 | 6.14.16-1.12.22.11.4.kb3.ky3_4 |
| nodejs-devel | x86_64 | 12.22.11-4.kb3.ky3_4 |
| v8-devel | x86_64 | 7.8.279.23-1.12.22.11.4.kb3.ky3_4 |
| nodejs-full-i18n | x86_64 | 12.22.11-4.kb3.ky3_4 |
| nodejs-libs | x86_64 | 12.22.11-4.kb3.ky3_4 |
| nodejs-full-i18n | aarch64 | 12.22.11-4.kb3.ky3_4 |
| npm | aarch64 | 6.14.16-1.12.22.11.4.kb3.ky3_4 |
| nodejs | aarch64 | 12.22.11-4.kb3.ky3_4 |
| v8-devel | aarch64 | 7.8.279.23-1.12.22.11.4.kb3.ky3_4 |
| nodejs-libs | aarch64 | 12.22.11-4.kb3.ky3_4 |
| nodejs-devel | aarch64 | 12.22.11-4.kb3.ky3_4 |
| 软件名称 | 架构 | 版本号 |
|---|---|---|
| nodejs-docs | noarch | 12.22.11-4.kb3.ky3_4 |
| nodejs-devel | x86_64 | 12.22.11-4.kb3.ky3_4 |
| npm | x86_64 | 6.14.16-1.12.22.11.4.kb3.ky3_4 |
| nodejs | x86_64 | 12.22.11-4.kb3.ky3_4 |
| nodejs-libs | x86_64 | 12.22.11-4.kb3.ky3_4 |
| nodejs-full-i18n | x86_64 | 12.22.11-4.kb3.ky3_4 |
| v8-devel | x86_64 | 7.8.279.23-1.12.22.11.4.kb3.ky3_4 |
| nodejs-full-i18n | aarch64 | 12.22.11-4.kb3.ky3_4 |
| nodejs-devel | aarch64 | 12.22.11-4.kb3.ky3_4 |
| nodejs-libs | aarch64 | 12.22.11-4.kb3.ky3_4 |
| v8-devel | aarch64 | 7.8.279.23-1.12.22.11.4.kb3.ky3_4 |
| npm | aarch64 | 6.14.16-1.12.22.11.4.kb3.ky3_4 |
| nodejs | aarch64 | 12.22.11-4.kb3.ky3_4 |
| 软件名称 | 架构 | 版本号 |
|---|---|---|
| nodejs-docs | noarch | 12.22.11-6.kb1.ky3_5 |
| v8-devel | x86_64 | 7.8.279.23-1.12.22.11.6.kb1.ky3_5 |
| nodejs-libs | x86_64 | 12.22.11-6.kb1.ky3_5 |
| nodejs | x86_64 | 12.22.11-6.kb1.ky3_5 |
| npm | x86_64 | 6.14.16-1.12.22.11.6.kb1.ky3_5 |
| nodejs-full-i18n | x86_64 | 12.22.11-6.kb1.ky3_5 |
| nodejs-devel | x86_64 | 12.22.11-6.kb1.ky3_5 |
| npm | aarch64 | 6.14.16-1.12.22.11.6.kb1.ky3_5 |
| nodejs-full-i18n | aarch64 | 12.22.11-6.kb1.ky3_5 |
| nodejs-libs | aarch64 | 12.22.11-6.kb1.ky3_5 |
| v8-devel | aarch64 | 7.8.279.23-1.12.22.11.6.kb1.ky3_5 |
| nodejs | aarch64 | 12.22.11-6.kb1.ky3_5 |
| nodejs-devel | aarch64 | 12.22.11-6.kb1.ky3_5 |
sudo yum update nodejs
