Oracle Linux 6265 Published by

A nodejs:14 security, bug fix, and enhancement update has been released for Oracle Linux 8.



El-errata: ELSA-2021-3074 Moderate: Oracle Linux 8 nodejs:14 security, bug fix, and enhancement update


Oracle Linux Security Advisory ELSA-2021-3074

  http://linux.oracle.com/errata/ELSA-2021-3074.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
nodejs-14.17.3-2.module+el8.4.0+20278+965e0649.x86_64.rpm
nodejs-devel-14.17.3-2.module+el8.4.0+20278+965e0649.x86_64.rpm
nodejs-docs-14.17.3-2.module+el8.4.0+20278+965e0649.noarch.rpm
nodejs-full-i18n-14.17.3-2.module+el8.4.0+20278+965e0649.x86_64.rpm
nodejs-nodemon-2.0.3-1.module+el8.3.0+7818+6cd30d85.noarch.rpm
nodejs-packaging-23-3.module+el8.3.0+7818+6cd30d85.noarch.rpm
npm-6.14.13-1.14.17.3.2.module+el8.4.0+20278+965e0649.x86_64.rpm

aarch64:
nodejs-14.17.3-2.module+el8.4.0+20278+965e0649.aarch64.rpm
nodejs-devel-14.17.3-2.module+el8.4.0+20278+965e0649.aarch64.rpm
nodejs-docs-14.17.3-2.module+el8.4.0+20278+965e0649.noarch.rpm
nodejs-full-i18n-14.17.3-2.module+el8.4.0+20278+965e0649.aarch64.rpm
nodejs-nodemon-2.0.3-1.module+el8.3.0+7818+6cd30d85.noarch.rpm
nodejs-packaging-23-3.module+el8.3.0+7818+6cd30d85.noarch.rpm
npm-6.14.13-1.14.17.3.2.module+el8.4.0+20278+965e0649.aarch64.rpm

SRPMS:
  http://oss.oracle.com/ol8/SRPMS-updates/nodejs-14.17.3-2.module+el8.4.0+20278+965e0649.src.rpm
  http://oss.oracle.com/ol8/SRPMS-updates/nodejs-nodemon-2.0.3-1.module+el8.3.0+7818+6cd30d85.src.rpm
  http://oss.oracle.com/ol8/SRPMS-updates/nodejs-packaging-23-3.module+el8.3.0+7818+6cd30d85.src.rpm

Related CVEs:

CVE-2021-22918
CVE-2021-23362
CVE-2021-27290



Description of changes:

nodejs
[1:14.17.3-2]
- Resolves: RHBZ#1980032, RHBZ#1978203
- Resolves RHBZ#1842826
- Don't use patch3

[1:14.17.3-1]
- Resolves: RHBZ#1980032, RHBZ#1978203
- Resolves RHBZ#1842826
- Resolves CVE-2021-22918(libuv), use system cipher list

[1:14.16.0-3]
- Resolves: RHBZ#1930775
- Always build with systemtap