{"id":"MGASA-2020-0372","summary":"Updated nodejs packages fix security vulnerabilities","details":"The nodejs package has been updated to the latest version in the 10.x branch,\nwhich is 10.22.1 at this time.  It fixes several security issues and other\nbugs.  See the upstream changelog and advisories for details.\n","modified":"2026-04-16T04:43:16.918624291Z","published":"2020-09-27T20:06:37Z","upstream":["CVE-2019-15604","CVE-2019-15605","CVE-2019-15606","CVE-2019-16775","CVE-2019-16776","CVE-2019-16777","CVE-2019-9511","CVE-2019-9512","CVE-2019-9513","CVE-2019-9514","CVE-2019-9515","CVE-2019-9516","CVE-2019-9517","CVE-2019-9518","CVE-2020-8174","CVE-2020-8252"],"references":[{"type":"ADVISORY","url":"https://advisories.mageia.org/MGASA-2020-0372.html"},{"type":"REPORT","url":"https://bugs.mageia.org/show_bug.cgi?id=25314"},{"type":"ADVISORY","url":"https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md"},{"type":"WEB","url":"https://nodejs.org/en/blog/vulnerability/december-2019-security-releases/"},{"type":"WEB","url":"https://nodejs.org/en/blog/vulnerability/february-2020-security-releases/"},{"type":"WEB","url":"https://nodejs.org/en/blog/vulnerability/june-2020-security-releases/"},{"type":"WEB","url":"https://nodejs.org/en/blog/vulnerability/september-2020-security-releases/"},{"type":"WEB","url":"https://github.com/nodejs/node/blob/v10.x/doc/changelogs/CHANGELOG_V10.md"},{"type":"WEB","url":"https://github.com/nghttp2/nghttp2/releases/"}],"affected":[{"package":{"name":"libuv","ecosystem":"Mageia:7","purl":"pkg:rpm/mageia/libuv?arch=source&distro=mageia-7"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.34.2-1.mga7"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2020-0372.json"}},{"package":{"name":"nodejs","ecosystem":"Mageia:7","purl":"pkg:rpm/mageia/nodejs?arch=source&distro=mageia-7"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"10.22.1-9.mga7"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2020-0372.json"}}],"schema_version":"1.7.5","credits":[{"name":"Mageia","contact":["https://wiki.mageia.org/en/Packages_Security_Team"],"type":"COORDINATOR"}]}