[Apollo] Advisories Statistics light light Login

RLSA-2026:1843

Security Mirrored from RHSA-2026:1843
Issued at: 2026-02-06
Updated at: 2026-02-06

Synopsis

Important: nodejs22 security update



Description

Node.js is a platform built on Chrome's JavaScript runtime \ for easily building fast, scalable network applications. \ Node.js uses an event-driven, non-blocking I/O model that \ makes it lightweight and efficient, perfect for data-intensive \ real-time applications that run across distributed devices.

Security Fix(es):

* nodejs: Nodejs filesystem permissions bypass (CVE-2025-55132)

* nodejs: Nodejs denial of service (CVE-2026-21637)

* nodejs: Nodejs denial of service (CVE-2025-59466)

* nodejs: Nodejs denial of service (CVE-2025-59465)

* nodejs: Nodejs uninitialized memory exposure (CVE-2025-55131)

* nodejs: Nodejs file permissions bypass (CVE-2025-55130)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.



Affected products

Rocky Linux 10 aarch64 Rocky Linux 10 ppc64le Rocky Linux 10 s390x Rocky Linux 10 x86_64

Fixes

2431349 2431343 2431340 2431352 2431350 2431338

CVEs

CVE-2025-55130 CVE-2025-55131 CVE-2025-55132 CVE-2025-59465 CVE-2025-59466 CVE-2026-21637

Affected packages

Rocky Linux 10 aarch64 - AppStream

nodejs-debuginfo-1:22.22.0-3.el10_1.aarch64.rpm nodejs22-debuginfo-1:22.22.0-3.el10_1.aarch64.rpm nodejs-docs-1:22.22.0-3.el10_1.noarch.rpm nodejs-npm-1:10.9.4-1.22.22.0.3.el10_1.aarch64.rpm nodejs22-debugsource-1:22.22.0-3.el10_1.aarch64.rpm nodejs-libs-1:22.22.0-3.el10_1.aarch64.rpm nodejs-1:22.22.0-3.el10_1.aarch64.rpm nodejs-full-i18n-1:22.22.0-3.el10_1.aarch64.rpm nodejs-libs-debuginfo-1:22.22.0-3.el10_1.aarch64.rpm nodejs-devel-1:22.22.0-3.el10_1.aarch64.rpm nodejs22-1:22.22.0-3.el10_1.src.rpm

Rocky Linux 10 x86_64 - AppStream

nodejs-full-i18n-1:22.22.0-3.el10_1.x86_64.rpm nodejs-debuginfo-1:22.22.0-3.el10_1.x86_64.rpm nodejs-devel-1:22.22.0-3.el10_1.x86_64.rpm nodejs-libs-1:22.22.0-3.el10_1.x86_64.rpm nodejs-docs-1:22.22.0-3.el10_1.noarch.rpm nodejs-npm-1:10.9.4-1.22.22.0.3.el10_1.x86_64.rpm nodejs-libs-debuginfo-1:22.22.0-3.el10_1.x86_64.rpm nodejs-1:22.22.0-3.el10_1.x86_64.rpm nodejs22-debuginfo-1:22.22.0-3.el10_1.x86_64.rpm nodejs22-debugsource-1:22.22.0-3.el10_1.x86_64.rpm nodejs22-1:22.22.0-3.el10_1.src.rpm

Rocky Linux 10 ppc64le - AppStream

nodejs22-debuginfo-1:22.22.0-3.el10_1.ppc64le.rpm nodejs-libs-debuginfo-1:22.22.0-3.el10_1.ppc64le.rpm nodejs-libs-1:22.22.0-3.el10_1.ppc64le.rpm nodejs-docs-1:22.22.0-3.el10_1.noarch.rpm nodejs-full-i18n-1:22.22.0-3.el10_1.ppc64le.rpm nodejs-debuginfo-1:22.22.0-3.el10_1.ppc64le.rpm nodejs-devel-1:22.22.0-3.el10_1.ppc64le.rpm nodejs-1:22.22.0-3.el10_1.ppc64le.rpm nodejs22-1:22.22.0-3.el10_1.src.rpm nodejs22-debugsource-1:22.22.0-3.el10_1.ppc64le.rpm nodejs-npm-1:10.9.4-1.22.22.0.3.el10_1.ppc64le.rpm

Rocky Linux 10 s390x - AppStream

nodejs22-debugsource-1:22.22.0-3.el10_1.s390x.rpm nodejs-npm-1:10.9.4-1.22.22.0.3.el10_1.s390x.rpm nodejs22-debuginfo-1:22.22.0-3.el10_1.s390x.rpm nodejs-docs-1:22.22.0-3.el10_1.noarch.rpm nodejs-full-i18n-1:22.22.0-3.el10_1.s390x.rpm nodejs-libs-debuginfo-1:22.22.0-3.el10_1.s390x.rpm nodejs-1:22.22.0-3.el10_1.s390x.rpm nodejs-libs-1:22.22.0-3.el10_1.s390x.rpm nodejs22-1:22.22.0-3.el10_1.src.rpm nodejs-debuginfo-1:22.22.0-3.el10_1.s390x.rpm nodejs-devel-1:22.22.0-3.el10_1.s390x.rpm