Bugs fixes in "nodejs"
| Origin | Bug number | Title | Date fixed |
|---|---|---|---|
| CVE | CVE-2023-32559 | A privilege escalation vulnerability exists in the experimental policy mechanism in all active release lines: 16.x, 18.x and, 20.x. The use of the de | 2024-06-11 |
| CVE | CVE-2023-32006 | The use of `module.constructor.createRequire()` can bypass the policy mechanism and require modules outside of the policy.json definition for a given | 2024-06-11 |
| CVE | CVE-2023-32002 | The use of `Module._load()` can bypass the policy mechanism and require modules outside of the policy.json definition for a given module. This vulne | 2024-06-11 |
| CVE | CVE-2023-32559 | A privilege escalation vulnerability exists in the experimental policy mechanism in all active release lines: 16.x, 18.x and, 20.x. The use of the de | 2024-06-11 |
| CVE | CVE-2023-32006 | The use of `module.constructor.createRequire()` can bypass the policy mechanism and require modules outside of the policy.json definition for a given | 2024-06-11 |
| CVE | CVE-2023-32002 | The use of `Module._load()` can bypass the policy mechanism and require modules outside of the policy.json definition for a given module. This vulne | 2024-06-11 |
| Launchpad | 2061946 | nodejs autopkgtests fail due to a python3-distutils dependency | 2024-04-22 |
| CVE | CVE-2023-30590 | The generateKeys() API function returned from crypto.createDiffieHellman() only generates missing (or outdated) keys, that is, it only generates a pr | 2024-04-16 |
| CVE | CVE-2023-30590 | The generateKeys() API function returned from crypto.createDiffieHellman() only generates missing (or outdated) keys, that is, it only generates a pr | 2024-04-16 |
| CVE | CVE-2023-30590 | The generateKeys() API function returned from crypto.createDiffieHellman() only generates missing (or outdated) keys, that is, it only generates a pr | 2024-04-16 |
| CVE | CVE-2023-30590 | The generateKeys() API function returned from crypto.createDiffieHellman() only generates missing (or outdated) keys, that is, it only generates a pr | 2024-04-16 |
| CVE | CVE-2023-23920 | An untrusted search path vulnerability exists in Node.js. <19.6.1, <18.14.1, <16.19.1, and <14.21.3 that could allow an attacker to search and potent | 2024-03-04 |
| CVE | CVE-2023-2650 | openssl Possible DoS translating ASN.1 object identifiers | 2024-03-04 |
| CVE | CVE-2023-23920 | An untrusted search path vulnerability exists in Node.js. <19.6.1, <18.14.1, <16.19.1, and <14.21.3 that could allow an attacker to search and potent | 2024-03-04 |
| CVE | CVE-2023-23920 | An untrusted search path vulnerability exists in Node.js. <19.6.1, <18.14.1, <16.19.1, and <14.21.3 that could allow an attacker to search and potent | 2024-03-04 |
| CVE | CVE-2023-2650 | openssl Possible DoS translating ASN.1 object identifiers | 2024-03-04 |
| CVE | CVE-2023-23920 | An untrusted search path vulnerability exists in Node.js. <19.6.1, <18.14.1, <16.19.1, and <14.21.3 that could allow an attacker to search and potent | 2024-03-04 |
| CVE | CVE-2023-0401 | openssl: NULL dereference during PKCS7 data verification | 2024-01-03 |
| CVE | CVE-2023-0215 | openssl: Use-after-free following BIO_new_NDEF | 2024-01-03 |
| CVE | CVE-2022-4450 | openssl: Double free after calling PEM_read_bio_ex | 2024-01-03 |
About
-
Send Feedback to @ubuntu_updates
