Read Time:28 Second

FEDORA-2023-d5030c983c

Packages in this update:

nodejs18-18.18.2-1.fc38

Update description:

2023-10-13, Version 18.18.2 ‘Hydrogen’ (LTS), @RafaelGSS

This is a security release.

Notable Changes

The following CVEs are fixed in this release:

CVE-2023-44487: nghttp2 Security Release (High)
CVE-2023-45143: undici Security Release (High)
CVE-2023-38552: Integrity checks according to policies can be circumvented (Medium)
CVE-2023-39333: Code injection via WebAssembly export names (Low)

More detailed information on each of the vulnerabilities can be found in October 2023 Security Releases blog post.

Read More