[ubuntu/mantic-updates] nodejs 18.13.0+dfsg1-1ubuntu2.2 (Accepted)
Ubuntu Archive Robot
ubuntu-archive-robot at lists.canonical.com
Tue Apr 16 12:28:36 UTC 2024
nodejs (18.13.0+dfsg1-1ubuntu2.2) mantic-security; urgency=medium
* SECURITY UPDATE: Denial of Service
- debian/patches/CVE-2023-30588.patch: fixed the issue that happens by
using an invalid public key in crypto.X509Certificate()
- CVE-2023-30588
* SECURITY UPDATE: Unauthorised Access
- debian/patches/CVE-2023-30589.patch: fixed the incorrect use of CRLF
sequence to delimit HTTP requests
- CVE-2023-30589
* SECURITY UPDATE: Incorrect Documentation for Diffie-Hellman APIs
- debian/patches/CVE-2023-30590.patch: fixed the inconsistency between the
documents and the function of Diffie-Hellman APIs
- CVE-2023-30590
Date: 2024-04-08 14:00:09.687822+00:00
Changed-By: Amir Naseredini <amir.naseredini at canonical.com>
Signed-By: Ubuntu Archive Robot <ubuntu-archive-robot at lists.canonical.com>
https://launchpad.net/ubuntu/+source/nodejs/18.13.0+dfsg1-1ubuntu2.2
-------------- next part --------------
Sorry, changesfile not available.
More information about the mantic-changes
mailing list