{"id":"MGASA-2022-0354","summary":"Updated nodejs packages fix security vulnerability","details":"DNS rebinding in --inspect on macOS (CVE-2022-32212)\nBypass via obs-fold mechanic (CVE-2022-32213)\nHTTP Request Smuggling Due to Incorrect Parsing of Header Fields\n(CVE-2022-35256)\n","modified":"2026-02-04T03:36:26.147227Z","published":"2022-10-01T17:48:24Z","related":["CVE-2022-32212","CVE-2022-32213","CVE-2022-35256"],"references":[{"type":"ADVISORY","url":"https://advisories.mageia.org/MGASA-2022-0354.html"},{"type":"REPORT","url":"https://bugs.mageia.org/show_bug.cgi?id=30887"},{"type":"REPORT","url":"https://github.com/nodejs/node/releases/tag/v14.20.1"},{"type":"REPORT","url":"https://nodejs.org/en/blog/vulnerability/september-2022-security-releases/"}],"affected":[{"package":{"name":"nodejs","ecosystem":"Mageia:8","purl":"pkg:rpm/mageia/nodejs?arch=source&distro=mageia-8"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"14.20.1-2.1.mga8"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2022-0354.json"}}],"schema_version":"1.7.3","credits":[{"name":"Mageia","contact":["https://wiki.mageia.org/en/Packages_Security_Team"],"type":"COORDINATOR"}]}