RHSA-2023:2654

See a problem?
Please try reporting it to the source first.

Source

https://access.redhat.com/errata/RHSA-2023:2654

Import Source

https://security.access.redhat.com/data/osv/RHSA-2023:2654.json

JSON Data

https://api.test.osv.dev/v1/vulns/RHSA-2023:2654

Upstream

CVE-2021-35065

CVE-2022-25881

CVE-2022-4904

CVE-2023-23918

CVE-2023-23919

CVE-2023-23920

CVE-2023-23936

CVE-2023-24807

Published

2024-10-22T00:36:26Z

Modified

2025-09-11T12:06:38Z

Severity

8.6 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H CVSS Calculator

Summary

Red Hat Security Advisory: nodejs:18 security, bug fix, and enhancement update

Details

References

Affected packages

Red Hat:enterprise_linux:9::appstream / nodejs-18.14.2

Package

Name: nodejs-18.14.2
Purl: pkg:rpm/redhat/nodejs

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.module+el9.2.0.z+18497+a402347c.x86_64

Red Hat:enterprise_linux:9::appstream / nodejs-debuginfo-18.14.2

Package

Name: nodejs-debuginfo-18.14.2
Purl: pkg:rpm/redhat/nodejs-debuginfo

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.module+el9.2.0.z+18497+a402347c.x86_64

Red Hat:enterprise_linux:9::appstream / nodejs-debugsource-18.14.2

Package

Name: nodejs-debugsource-18.14.2
Purl: pkg:rpm/redhat/nodejs-debugsource

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.module+el9.2.0.z+18497+a402347c.x86_64

Red Hat:enterprise_linux:9::appstream / nodejs-devel-18.14.2

Package

Name: nodejs-devel-18.14.2
Purl: pkg:rpm/redhat/nodejs-devel

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.module+el9.2.0.z+18497+a402347c.x86_64

Red Hat:enterprise_linux:9::appstream / nodejs-docs-18.14.2

Package

Name: nodejs-docs-18.14.2
Purl: pkg:rpm/redhat/nodejs-docs

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.module+el9.2.0.z+18497+a402347c.noarch

Red Hat:enterprise_linux:9::appstream / nodejs-full-i18n-18.14.2

Package

Name: nodejs-full-i18n-18.14.2
Purl: pkg:rpm/redhat/nodejs-full-i18n

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.module+el9.2.0.z+18497+a402347c.x86_64

Red Hat:enterprise_linux:9::appstream / nodejs-nodemon-2.0.20

Package

Name: nodejs-nodemon-2.0.20
Purl: pkg:rpm/redhat/nodejs-nodemon

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.module+el9.2.0.z+18497+a402347c.src

Red Hat:enterprise_linux:9::appstream / nodejs-packaging-2021.06

Package

Name: nodejs-packaging-2021.06
Purl: pkg:rpm/redhat/nodejs-packaging

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.module+el9.1.0+15718+e52ec601.src

Red Hat:enterprise_linux:9::appstream / nodejs-packaging-bundler-2021.06

Package

Name: nodejs-packaging-bundler-2021.06
Purl: pkg:rpm/redhat/nodejs-packaging-bundler

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.module+el9.1.0+15718+e52ec601.noarch

Red Hat:enterprise_linux:9::appstream / npm-9.5.0

Package

Name: npm-9.5.0
Purl: pkg:rpm/redhat/npm

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.18.14.2.2.module+el9.2.0.z+18497+a402347c.x86_64