Security News

Cybersecurity news aggregator

🐧
MEDIUM Updates Debian Security

DSA-6272-1 nodejs - security update

cve-2025-23085cve-2025-23166cve-2025-55131nodejsdebian
  • What: Security update for Node.js in Debian
  • Impact: Users of Debian-based systems running Node.js
Read Full Article →

[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index] [SECURITY] [DSA 6272-1] nodejs security update To: debian-security-announce@lists.debian.org Subject: [SECURITY] [DSA 6272-1] nodejs security update From: Moritz Muehlenhoff <jmm@debian.org> Date: Thu, 14 May 2026 21:02:14 +0000 Message-id: <[🔎] agY4Vg6p4zhhQMLs@seger.debian.org> Reply-to: debian-security-announce-request@lists.debian.org -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-6272-1 security@debian.org https://www.debian.org/security/ Moritz Muehlenhoff May 14, 2026 https://www.debian.org/security/faq - ------------------------------------------------------------------------- Package : nodejs CVE ID : CVE-2025-23085 CVE-2025-23166 CVE-2025-55131 CVE-2025-59465 CVE-2025-59466 CVE-2026-21710 CVE-2026-21713 CVE-2026-21714 Multiple vulnerabilities were discovered in Node.js, which could result in denial of service or information disclosure. For the oldstable distribution (bookworm), these problems have been fixed in version 18.20.4+dfsg-1~deb12u2. We recommend that you upgrade your nodejs packages. For the detailed security status of nodejs please refer to its security tracker page at: https://security-tracker.debian.org/tracker/nodejs Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: https://www.debian.org/security/ Mailing list: debian-security-announce@lists.debian.org -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEtuYvPRKsOElcDakFEMKTtsN8TjYFAmoGOAUACgkQEMKTtsN8 TjYN5g/+LLVad2C6w6h2/3eCIveUXjHJVK/RQeeT+Tr4i1/ofEfZC8Ema4cJl/HQ 5exfocqXf+0bmIF+a5HcZdvmgzk9Qbt/N7ra/LvXSCyUHfAx9Q6vVq0KsUN05r2i CHdtXzqATjq8Qq02WCKYAC0ehifJsYFcwH24XX+kPxhTke7hz6lme9HEjzBW202V wIgsOo3bBOmNCFqNh0pHxHsq9tQ7s8EnSRsuvVv2Td1qei/hDC4E0QhlGXezmvi7 0qbS2yzBFhel+ADlQL0cm5OlSYuQFVgc93tD1KZRlNo+QKAEVnf2bd5NDEI7Dgbn ZABQVBqEs98G+NlzwJdZXCXkdXOlkxIUH5KBrnv2DkSh21sX/yqNqpHNwmFj7xIb z1kHt8kWC0K5F6xjwbkl8Wqp8Qn4CGu8SPq0D8E9Hb0zElD5MHZj2qOpRerUAf2Z 2XttkTCJcICGg1X7pjs/jPuloWw2Gpsice/kZkqIUle6xTPGDhTN6RKwY9ynJirh FgXErHDd25c+rVV1TVM7eKgdAnATikZHu6B03G77UsR5ztdrD7btHiGUdkcTiPMT hSMdbH1QUO/Wbdb8cyfuaapQjs7dRaymg6UWLT3CxgxSUrejyqO86zAMY6Db3blT uXQM8rqSPdIEZz/phAFglV8P6jSk9h2v90FXLTOg9tf6gq/Hs1s= =Ayrc -----END PGP SIGNATURE----- Reply to: debian-security-announce@lists.debian.org Moritz Muehlenhoff (on-list) Moritz Muehlenhoff (off-list) Prev by Date: [SECURITY] [DSA 6271-1] gsasl security update Previous by thread: [SECURITY] [DSA 6271-1] gsasl security update Index(es): Date Thread

Related Articles

MEDIUM Multiples vulnérabilités dans Tenable Identity Exposure (15 avril 2026) CERT-FR (ANSSI) HIGH DSA-6166-1 nodejs - security update Debian Security HIGH DSA-6183-1 nodejs - security update Debian Security LOW Multiples vulnérabilités dans les produits VMware (18 mars 2026) CERT-FR (ANSSI)
Read Full Article → ← Back to News

Share this article

Twitter Facebook LinkedIn