RHSA-2025:1613HighCVSS 7.7
Red Hat Security Advisory: nodejs:22 security update
🔗 CVE IDs covered (3)
📋 Description
CVE-2025-22150 — undici: Undici Uses Insufficiently Random Values CVE-2025-23083 — nodejs: Node.js Worker Thread Exposure via Diagnostics Channel CVE-2025-23085 — nodejs: GOAWAY HTTP/2 frames cause memory leak outside heap
🔗 References (6)
- selfhttps://access.redhat.com/errata/RHSA-2025:1613
- externalhttps://access.redhat.com/security/updates/classification/#important
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2339176
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2339392
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2342618
- selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_1613.json