RHSA-2021:2932MediumCVSS 7.5

Red Hat Security Advisory: rh-nodejs14-nodejs and rh-nodejs14-nodejs-nodemon security update

Published
July 28, 2021
Last Modified
June 25, 2026

🔗 CVE IDs covered (4)

📋 Description

CVE-2021-22918 — libuv: out-of-bounds read in uv__idna_toascii() can lead to information disclosures or crashes CVE-2021-23362 — nodejs-hosted-git-info: Regular Expression denial of service via shortcutMatch in fromUrl() CVE-2021-27290 — nodejs-ssri: Regular expression DoS (ReDoS) when parsing malicious SRI in strict mode CVE-2021-33502 — nodejs-normalize-url: ReDoS for data URLs

🔗 References (8)