Security Update 5.0 213

Critical Photon OS Security Update

Summary

Advisory Id : PHSA-2024-5.0-0213

Type : Security

Severity : ['Critical', 'Important', 'Moderate']

Issue date : 2024-02-20

Affected Release: 5.0

Details

Updates of ['libuv', 'nodejs'] packages of Photon OS have been released.

Affected Packages

Critical

libuv - ['CVE-2024-24806']

Important

nodejs - ['CVE-2024-21892', 'CVE-2024-22019', 'CVE-2024-21896', 'CVE-2024-22017', 'CVE-2024-21891']

Moderate

nodejs - ['CVE-2024-21890', 'CVE-2023-46809', 'CVE-2024-22025']

Solution

Update the affected packages (tdnf update package)

Updated Packages Information

libuv-1.44.2-2.ph5.x86_64.rpm | size : 92K , sha256 : 39fd224f4d7a179ac225535c370c24ae26400e3faaf9324b24b05d6868149434 , build time : Mon, 19 Feb 2024 17:59:32 UTC

libuv-devel-1.44.2-2.ph5.x86_64.rpm | size : 28K , sha256 : 9dcdc6a7742510d9123e3667eb07d1a00570f4dbee247695264cf5bd7fad48b2 , build time : Mon, 19 Feb 2024 17:59:32 UTC

nodejs-20.11.1-1.ph5.x86_64.rpm | size : 27M , sha256 : 73cc603134120c5a0debd6af72a5036ce463b9224255a707925b52aa2f6d9489 , build time : Mon, 19 Feb 2024 17:59:38 UTC

nodejs-devel-20.11.1-1.ph5.x86_64.rpm | size : 912K , sha256 : a5227346b6598a92a3185d7ddc4ec8017bfa91b268e00e11d0a8f6cc87cc3ee3 , build time : Mon, 19 Feb 2024 17:59:38 UTC