Advisories ยป MGASA-2022-0422

Updated nodejs packages fix security vulnerability

Publication date: 13 Nov 2022
Modification date: 13 Nov 2022
Type: security
Affected Mageia releases : 8
CVE: CVE-2022-43548

Description

DNS rebinding in --inspect via invalid octal IP address (CVE-2022-43548)
In addition, 14.21.0 has provided the following changes:
deps
  update corepack to 0.14.2 (Node.js GitHub Bot) #44775
src
  add --openssl-shared-config option (Daniel Bevenius) #43124

References

SRPMS

8/core