An untrusted search path vulnerability exists in Node.js. <19.6.1, <18.14.1, <16.19.1, and <14.21.3 that could allow an attacker to search and potentially load ICU data when running with elevated privileges.
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "libnode64-dbgsym": "10.19.0~dfsg-3ubuntu1.5", "libnode64": "10.19.0~dfsg-3ubuntu1.5", "nodejs-doc": "10.19.0~dfsg-3ubuntu1.5", "nodejs": "10.19.0~dfsg-3ubuntu1.5", "libnode-dev": "10.19.0~dfsg-3ubuntu1.5", "nodejs-dbgsym": "10.19.0~dfsg-3ubuntu1.5" } ] }
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "nodejs-doc": "12.22.9~dfsg-1ubuntu3.4", "libnode72": "12.22.9~dfsg-1ubuntu3.4", "nodejs": "12.22.9~dfsg-1ubuntu3.4", "libnode-dev": "12.22.9~dfsg-1ubuntu3.4", "libnode72-dbgsym": "12.22.9~dfsg-1ubuntu3.4", "nodejs-dbgsym": "12.22.9~dfsg-1ubuntu3.4" } ] }
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "libnode108": "18.19.1+dfsg-2ubuntu4", "libnode108-dbgsym": "18.19.1+dfsg-2ubuntu4", "nodejs": "18.19.1+dfsg-2ubuntu4", "libnode-dev": "18.19.1+dfsg-2ubuntu4", "nodejs-doc": "18.19.1+dfsg-2ubuntu4", "nodejs-dbgsym": "18.19.1+dfsg-2ubuntu4" } ] }