Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2025-31498 (GCVE-0-2025-31498)
Vulnerability from cvelistv5 – Published: 2025-04-08 13:53 – Updated: 2025-04-08 18:40
VLAI
EPSS
Title
c-ares has a use-after-free in read_answers()
Summary
c-ares is an asynchronous resolver library. From 1.32.3 through 1.34.4, there is a use-after-free in read_answers() when process_answer() may re-enqueue a query either due to a DNS Cookie Failure or when the upstream server does not properly support EDNS, or possibly on TCP queries if the remote closed the connection immediately after a response. If there was an issue trying to put that new transaction on the wire, it would close the connection handle, but read_answers() was still expecting the connection handle to be available to possibly dequeue other responses. In theory a remote attacker might be able to trigger this by flooding the target with ICMP UNREACHABLE packets if they also control the upstream nameserver and can return a result with one of those conditions, this has been untested. Otherwise only a local attacker might be able to change system behavior to make send()/write() return a failure condition. This vulnerability is fixed in 1.34.5.
Severity
SSVC
Exploitation: none
Automatable: no
Technical Impact: partial
CISA Coordinator (v2.0.3)
CWE
- CWE-416 - Use After Free
Assigner
References
4 references
| URL | Tags |
|---|---|
| https://github.com/c-ares/c-ares/security/advisor… | x_refsource_CONFIRM |
| https://github.com/c-ares/c-ares/pull/821 | x_refsource_MISC |
| https://github.com/c-ares/c-ares/commit/29d387191… | x_refsource_MISC |
| http://www.openwall.com/lists/oss-security/2025/04/08/3 |
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2025-04-08T15:03:00.750Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"url": "http://www.openwall.com/lists/oss-security/2025/04/08/3"
}
],
"title": "CVE Program Container"
},
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2025-31498",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2025-04-08T18:40:21.274882Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2025-04-08T18:40:36.081Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"product": "c-ares",
"vendor": "c-ares",
"versions": [
{
"status": "affected",
"version": "\u003e= 1.32.3, \u003c 1.34.5"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "c-ares is an asynchronous resolver library. From 1.32.3 through 1.34.4, there is a use-after-free in read_answers() when process_answer() may re-enqueue a query either due to a DNS Cookie Failure or when the upstream server does not properly support EDNS, or possibly on TCP queries if the remote closed the connection immediately after a response. If there was an issue trying to put that new transaction on the wire, it would close the connection handle, but read_answers() was still expecting the connection handle to be available to possibly dequeue other responses. In theory a remote attacker might be able to trigger this by flooding the target with ICMP UNREACHABLE packets if they also control the upstream nameserver and can return a result with one of those conditions, this has been untested. Otherwise only a local attacker might be able to change system behavior to make send()/write() return a failure condition. This vulnerability is fixed in 1.34.5."
}
],
"metrics": [
{
"cvssV4_0": {
"attackComplexity": "HIGH",
"attackRequirements": "NONE",
"attackVector": "NETWORK",
"baseScore": 8.3,
"baseSeverity": "HIGH",
"privilegesRequired": "NONE",
"subAvailabilityImpact": "NONE",
"subConfidentialityImpact": "NONE",
"subIntegrityImpact": "NONE",
"userInteraction": "NONE",
"vectorString": "CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N",
"version": "4.0",
"vulnAvailabilityImpact": "HIGH",
"vulnConfidentialityImpact": "LOW",
"vulnIntegrityImpact": "LOW"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-416",
"description": "CWE-416: Use After Free",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2025-04-08T13:53:11.232Z",
"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
"shortName": "GitHub_M"
},
"references": [
{
"name": "https://github.com/c-ares/c-ares/security/advisories/GHSA-6hxc-62jh-p29v",
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://github.com/c-ares/c-ares/security/advisories/GHSA-6hxc-62jh-p29v"
},
{
"name": "https://github.com/c-ares/c-ares/pull/821",
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/c-ares/c-ares/pull/821"
},
{
"name": "https://github.com/c-ares/c-ares/commit/29d38719112639d8c0ba910254a3dd4f482ea2d1",
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/c-ares/c-ares/commit/29d38719112639d8c0ba910254a3dd4f482ea2d1"
}
],
"source": {
"advisory": "GHSA-6hxc-62jh-p29v",
"discovery": "UNKNOWN"
},
"title": "c-ares has a use-after-free in read_answers()"
}
},
"cveMetadata": {
"assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
"assignerShortName": "GitHub_M",
"cveId": "CVE-2025-31498",
"datePublished": "2025-04-08T13:53:11.232Z",
"dateReserved": "2025-03-28T13:36:51.300Z",
"dateUpdated": "2025-04-08T18:40:36.081Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2025-31498",
"date": "2026-06-06",
"epss": "0.00651",
"percentile": "0.71313"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2025-31498\",\"sourceIdentifier\":\"security-advisories@github.com\",\"published\":\"2025-04-08T14:15:35.293\",\"lastModified\":\"2025-04-08T18:13:53.347\",\"vulnStatus\":\"Awaiting Analysis\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"c-ares is an asynchronous resolver library. From 1.32.3 through 1.34.4, there is a use-after-free in read_answers() when process_answer() may re-enqueue a query either due to a DNS Cookie Failure or when the upstream server does not properly support EDNS, or possibly on TCP queries if the remote closed the connection immediately after a response. If there was an issue trying to put that new transaction on the wire, it would close the connection handle, but read_answers() was still expecting the connection handle to be available to possibly dequeue other responses. In theory a remote attacker might be able to trigger this by flooding the target with ICMP UNREACHABLE packets if they also control the upstream nameserver and can return a result with one of those conditions, this has been untested. Otherwise only a local attacker might be able to change system behavior to make send()/write() return a failure condition. This vulnerability is fixed in 1.34.5.\"},{\"lang\":\"es\",\"value\":\"c-ares es una librer\u00eda de resoluci\u00f3n as\u00edncrona. Desde la versi\u00f3n 1.32.3 hasta la 1.34.4, existe un m\u00e9todo de use-after-free en read_answers() cuando process_answer() puede volver a poner en cola una consulta debido a un fallo de cookie DNS, a que el servidor ascendente no soporta correctamente EDNS o, posiblemente, en consultas TCP si el servidor remoto cerr\u00f3 la conexi\u00f3n inmediatamente despu\u00e9s de una respuesta. Si hubiera un problema al intentar enviar esa nueva transacci\u00f3n, se cerrar\u00eda el identificador de conexi\u00f3n, pero read_answers() segu\u00eda esperando que este estuviera disponible para, posiblemente, retirar otras respuestas de la cola. En teor\u00eda, un atacante remoto podr\u00eda activar esto inundando el objetivo con paquetes ICMP UNREACHABLE si tambi\u00e9n controla el servidor de nombres ascendente y puede devolver un resultado con una de esas condiciones; esto no se ha probado. De lo contrario, solo un atacante local podr\u00eda modificar el comportamiento del sistema para que send()/write() devuelva una condici\u00f3n de fallo. Esta vulnerabilidad se corrigi\u00f3 en la versi\u00f3n 1.34.5.\"}],\"metrics\":{\"cvssMetricV40\":[{\"source\":\"security-advisories@github.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"4.0\",\"vectorString\":\"CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X\",\"baseScore\":8.3,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"HIGH\",\"attackRequirements\":\"NONE\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"vulnConfidentialityImpact\":\"LOW\",\"vulnIntegrityImpact\":\"LOW\",\"vulnAvailabilityImpact\":\"HIGH\",\"subConfidentialityImpact\":\"NONE\",\"subIntegrityImpact\":\"NONE\",\"subAvailabilityImpact\":\"NONE\",\"exploitMaturity\":\"NOT_DEFINED\",\"confidentialityRequirement\":\"NOT_DEFINED\",\"integrityRequirement\":\"NOT_DEFINED\",\"availabilityRequirement\":\"NOT_DEFINED\",\"modifiedAttackVector\":\"NOT_DEFINED\",\"modifiedAttackComplexity\":\"NOT_DEFINED\",\"modifiedAttackRequirements\":\"NOT_DEFINED\",\"modifiedPrivilegesRequired\":\"NOT_DEFINED\",\"modifiedUserInteraction\":\"NOT_DEFINED\",\"modifiedVulnConfidentialityImpact\":\"NOT_DEFINED\",\"modifiedVulnIntegrityImpact\":\"NOT_DEFINED\",\"modifiedVulnAvailabilityImpact\":\"NOT_DEFINED\",\"modifiedSubConfidentialityImpact\":\"NOT_DEFINED\",\"modifiedSubIntegrityImpact\":\"NOT_DEFINED\",\"modifiedSubAvailabilityImpact\":\"NOT_DEFINED\",\"Safety\":\"NOT_DEFINED\",\"Automatable\":\"NOT_DEFINED\",\"Recovery\":\"NOT_DEFINED\",\"valueDensity\":\"NOT_DEFINED\",\"vulnerabilityResponseEffort\":\"NOT_DEFINED\",\"providerUrgency\":\"NOT_DEFINED\"}}]},\"weaknesses\":[{\"source\":\"security-advisories@github.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-416\"}]}],\"references\":[{\"url\":\"https://github.com/c-ares/c-ares/commit/29d38719112639d8c0ba910254a3dd4f482ea2d1\",\"source\":\"security-advisories@github.com\"},{\"url\":\"https://github.com/c-ares/c-ares/pull/821\",\"source\":\"security-advisories@github.com\"},{\"url\":\"https://github.com/c-ares/c-ares/security/advisories/GHSA-6hxc-62jh-p29v\",\"source\":\"security-advisories@github.com\"},{\"url\":\"http://www.openwall.com/lists/oss-security/2025/04/08/3\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}",
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"http://www.openwall.com/lists/oss-security/2025/04/08/3\"}], \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2025-04-08T15:03:00.750Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2025-31498\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2025-04-08T18:40:21.274882Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2025-04-08T18:40:29.275Z\"}}], \"cna\": {\"title\": \"c-ares has a use-after-free in read_answers()\", \"source\": {\"advisory\": \"GHSA-6hxc-62jh-p29v\", \"discovery\": \"UNKNOWN\"}, \"metrics\": [{\"cvssV4_0\": {\"version\": \"4.0\", \"baseScore\": 8.3, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"HIGH\", \"attackRequirements\": \"NONE\", \"privilegesRequired\": \"NONE\", \"subIntegrityImpact\": \"NONE\", \"vulnIntegrityImpact\": \"LOW\", \"subAvailabilityImpact\": \"NONE\", \"vulnAvailabilityImpact\": \"HIGH\", \"subConfidentialityImpact\": \"NONE\", \"vulnConfidentialityImpact\": \"LOW\"}}], \"affected\": [{\"vendor\": \"c-ares\", \"product\": \"c-ares\", \"versions\": [{\"status\": \"affected\", \"version\": \"\u003e= 1.32.3, \u003c 1.34.5\"}]}], \"references\": [{\"url\": \"https://github.com/c-ares/c-ares/security/advisories/GHSA-6hxc-62jh-p29v\", \"name\": \"https://github.com/c-ares/c-ares/security/advisories/GHSA-6hxc-62jh-p29v\", \"tags\": [\"x_refsource_CONFIRM\"]}, {\"url\": \"https://github.com/c-ares/c-ares/pull/821\", \"name\": \"https://github.com/c-ares/c-ares/pull/821\", \"tags\": [\"x_refsource_MISC\"]}, {\"url\": \"https://github.com/c-ares/c-ares/commit/29d38719112639d8c0ba910254a3dd4f482ea2d1\", \"name\": \"https://github.com/c-ares/c-ares/commit/29d38719112639d8c0ba910254a3dd4f482ea2d1\", \"tags\": [\"x_refsource_MISC\"]}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"c-ares is an asynchronous resolver library. From 1.32.3 through 1.34.4, there is a use-after-free in read_answers() when process_answer() may re-enqueue a query either due to a DNS Cookie Failure or when the upstream server does not properly support EDNS, or possibly on TCP queries if the remote closed the connection immediately after a response. If there was an issue trying to put that new transaction on the wire, it would close the connection handle, but read_answers() was still expecting the connection handle to be available to possibly dequeue other responses. In theory a remote attacker might be able to trigger this by flooding the target with ICMP UNREACHABLE packets if they also control the upstream nameserver and can return a result with one of those conditions, this has been untested. Otherwise only a local attacker might be able to change system behavior to make send()/write() return a failure condition. This vulnerability is fixed in 1.34.5.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-416\", \"description\": \"CWE-416: Use After Free\"}]}], \"providerMetadata\": {\"orgId\": \"a0819718-46f1-4df5-94e2-005712e83aaa\", \"shortName\": \"GitHub_M\", \"dateUpdated\": \"2025-04-08T13:53:11.232Z\"}}}",
"cveMetadata": "{\"cveId\": \"CVE-2025-31498\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2025-04-08T18:40:36.081Z\", \"dateReserved\": \"2025-03-28T13:36:51.300Z\", \"assignerOrgId\": \"a0819718-46f1-4df5-94e2-005712e83aaa\", \"datePublished\": \"2025-04-08T13:53:11.232Z\", \"assignerShortName\": \"GitHub_M\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
}
}
CERTFR-2025-AVI-1015
Vulnerability from certfr_avis - Published: 2025-11-17 - Updated: 2025-11-17
De multiples vulnérabilités ont été découvertes dans les produits NetApp. Certaines d'entre elles permettent à un attaquant de provoquer un déni de service à distance, une atteinte à la confidentialité des données et une atteinte à l'intégrité des données.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
References
| Title | Publication Time | Tags | |||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "HCI Compute Node (Bootstrap OS) toutes versions",
"product": {
"name": "N/A",
"vendor": {
"name": "NetApp",
"scada": false
}
}
},
{
"description": "Brocade SAN Navigator (SANnav) versions ant\u00e9rieures \u00e0 2.3.1b",
"product": {
"name": "N/A",
"vendor": {
"name": "NetApp",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2024-45782",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45782"
},
{
"name": "CVE-2025-1053",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1053"
},
{
"name": "CVE-2025-31498",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-31498"
}
],
"initial_release_date": "2025-11-17T00:00:00",
"last_revision_date": "2025-11-17T00:00:00",
"links": [],
"reference": "CERTFR-2025-AVI-1015",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2025-11-17T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits NetApp. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer un d\u00e9ni de service \u00e0 distance, une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es et une atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits NetApp",
"vendor_advisories": [
{
"published_at": "2025-11-14",
"title": "Bulletin de s\u00e9curit\u00e9 NetApp NTAP-20251114-0008",
"url": "https://security.netapp.com/advisory/NTAP-20251114-0008"
},
{
"published_at": "2025-11-14",
"title": "Bulletin de s\u00e9curit\u00e9 NetApp NTAP-20251114-0005",
"url": "https://security.netapp.com/advisory/NTAP-20251114-0005"
},
{
"published_at": "2025-11-14",
"title": "Bulletin de s\u00e9curit\u00e9 NetApp NTAP-20251114-0006",
"url": "https://security.netapp.com/advisory/NTAP-20251114-0006"
}
]
}
CERTFR-2026-AVI-0093
Vulnerability from certfr_avis - Published: 2026-01-28 - Updated: 2026-01-28
De multiples vulnérabilités ont été découvertes dans Tenable Network Monitor. Elles permettent à un attaquant de provoquer un problème de sécurité non spécifié par l'éditeur.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| Tenable | Nessus Network Monitor | Network Monitor versions antérieures à 6.5.3 |
References
| Title | Publication Time | Tags | |||
|---|---|---|---|---|---|
|
|||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Network Monitor versions ant\u00e9rieures \u00e0 6.5.3",
"product": {
"name": "Nessus Network Monitor",
"vendor": {
"name": "Tenable",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2023-7104",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-7104"
},
{
"name": "CVE-2024-0232",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-0232"
},
{
"name": "CVE-2025-10148",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-10148"
},
{
"name": "CVE-2025-11731",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-11731"
},
{
"name": "CVE-2025-49794",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-49794"
},
{
"name": "CVE-2024-8176",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-8176"
},
{
"name": "CVE-2025-10966",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-10966"
},
{
"name": "CVE-2025-59375",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-59375"
},
{
"name": "CVE-2025-7425",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-7425"
},
{
"name": "CVE-2025-14017",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-14017"
},
{
"name": "CVE-2025-5025",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5025"
},
{
"name": "CVE-2025-13034",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-13034"
},
{
"name": "CVE-2025-10911",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-10911"
},
{
"name": "CVE-2025-14524",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-14524"
},
{
"name": "CVE-2025-6021",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6021"
},
{
"name": "CVE-2025-62408",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-62408"
},
{
"name": "CVE-2025-15079",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-15079"
},
{
"name": "CVE-2025-14819",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-14819"
},
{
"name": "CVE-2025-4947",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4947"
},
{
"name": "CVE-2025-49796",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-49796"
},
{
"name": "CVE-2025-15224",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-15224"
},
{
"name": "CVE-2025-31498",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-31498"
}
],
"initial_release_date": "2026-01-28T00:00:00",
"last_revision_date": "2026-01-28T00:00:00",
"links": [],
"reference": "CERTFR-2026-AVI-0093",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2026-01-28T00:00:00.000000"
}
],
"risks": [
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans Tenable Network Monitor. Elles permettent \u00e0 un attaquant de provoquer un probl\u00e8me de s\u00e9curit\u00e9 non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans Tenable Network Monitor",
"vendor_advisories": [
{
"published_at": "2026-01-27",
"title": "Bulletin de s\u00e9curit\u00e9 Tenable tns-2026-02",
"url": "https://www.tenable.com/security/tns-2026-02"
}
]
}
FKIE_CVE-2025-31498
Vulnerability from fkie_nvd - Published: 2025-04-08 14:15 - Updated: 2026-04-15 00:35
Severity
Summary
c-ares is an asynchronous resolver library. From 1.32.3 through 1.34.4, there is a use-after-free in read_answers() when process_answer() may re-enqueue a query either due to a DNS Cookie Failure or when the upstream server does not properly support EDNS, or possibly on TCP queries if the remote closed the connection immediately after a response. If there was an issue trying to put that new transaction on the wire, it would close the connection handle, but read_answers() was still expecting the connection handle to be available to possibly dequeue other responses. In theory a remote attacker might be able to trigger this by flooding the target with ICMP UNREACHABLE packets if they also control the upstream nameserver and can return a result with one of those conditions, this has been untested. Otherwise only a local attacker might be able to change system behavior to make send()/write() return a failure condition. This vulnerability is fixed in 1.34.5.
References
Impacted products
| Vendor | Product | Version |
|---|
{
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "c-ares is an asynchronous resolver library. From 1.32.3 through 1.34.4, there is a use-after-free in read_answers() when process_answer() may re-enqueue a query either due to a DNS Cookie Failure or when the upstream server does not properly support EDNS, or possibly on TCP queries if the remote closed the connection immediately after a response. If there was an issue trying to put that new transaction on the wire, it would close the connection handle, but read_answers() was still expecting the connection handle to be available to possibly dequeue other responses. In theory a remote attacker might be able to trigger this by flooding the target with ICMP UNREACHABLE packets if they also control the upstream nameserver and can return a result with one of those conditions, this has been untested. Otherwise only a local attacker might be able to change system behavior to make send()/write() return a failure condition. This vulnerability is fixed in 1.34.5."
},
{
"lang": "es",
"value": "c-ares es una librer\u00eda de resoluci\u00f3n as\u00edncrona. Desde la versi\u00f3n 1.32.3 hasta la 1.34.4, existe un m\u00e9todo de use-after-free en read_answers() cuando process_answer() puede volver a poner en cola una consulta debido a un fallo de cookie DNS, a que el servidor ascendente no soporta correctamente EDNS o, posiblemente, en consultas TCP si el servidor remoto cerr\u00f3 la conexi\u00f3n inmediatamente despu\u00e9s de una respuesta. Si hubiera un problema al intentar enviar esa nueva transacci\u00f3n, se cerrar\u00eda el identificador de conexi\u00f3n, pero read_answers() segu\u00eda esperando que este estuviera disponible para, posiblemente, retirar otras respuestas de la cola. En teor\u00eda, un atacante remoto podr\u00eda activar esto inundando el objetivo con paquetes ICMP UNREACHABLE si tambi\u00e9n controla el servidor de nombres ascendente y puede devolver un resultado con una de esas condiciones; esto no se ha probado. De lo contrario, solo un atacante local podr\u00eda modificar el comportamiento del sistema para que send()/write() devuelva una condici\u00f3n de fallo. Esta vulnerabilidad se corrigi\u00f3 en la versi\u00f3n 1.34.5."
}
],
"id": "CVE-2025-31498",
"lastModified": "2026-04-15T00:35:42.020",
"metrics": {
"cvssMetricV40": [
{
"cvssData": {
"Automatable": "NOT_DEFINED",
"Recovery": "NOT_DEFINED",
"Safety": "NOT_DEFINED",
"attackComplexity": "HIGH",
"attackRequirements": "NONE",
"attackVector": "NETWORK",
"availabilityRequirement": "NOT_DEFINED",
"baseScore": 8.3,
"baseSeverity": "HIGH",
"confidentialityRequirement": "NOT_DEFINED",
"exploitMaturity": "NOT_DEFINED",
"integrityRequirement": "NOT_DEFINED",
"modifiedAttackComplexity": "NOT_DEFINED",
"modifiedAttackRequirements": "NOT_DEFINED",
"modifiedAttackVector": "NOT_DEFINED",
"modifiedPrivilegesRequired": "NOT_DEFINED",
"modifiedSubAvailabilityImpact": "NOT_DEFINED",
"modifiedSubConfidentialityImpact": "NOT_DEFINED",
"modifiedSubIntegrityImpact": "NOT_DEFINED",
"modifiedUserInteraction": "NOT_DEFINED",
"modifiedVulnAvailabilityImpact": "NOT_DEFINED",
"modifiedVulnConfidentialityImpact": "NOT_DEFINED",
"modifiedVulnIntegrityImpact": "NOT_DEFINED",
"privilegesRequired": "NONE",
"providerUrgency": "NOT_DEFINED",
"subAvailabilityImpact": "NONE",
"subConfidentialityImpact": "NONE",
"subIntegrityImpact": "NONE",
"userInteraction": "NONE",
"valueDensity": "NOT_DEFINED",
"vectorString": "CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X",
"version": "4.0",
"vulnAvailabilityImpact": "HIGH",
"vulnConfidentialityImpact": "LOW",
"vulnIntegrityImpact": "LOW",
"vulnerabilityResponseEffort": "NOT_DEFINED"
},
"source": "security-advisories@github.com",
"type": "Secondary"
}
]
},
"published": "2025-04-08T14:15:35.293",
"references": [
{
"source": "security-advisories@github.com",
"url": "https://github.com/c-ares/c-ares/commit/29d38719112639d8c0ba910254a3dd4f482ea2d1"
},
{
"source": "security-advisories@github.com",
"url": "https://github.com/c-ares/c-ares/pull/821"
},
{
"source": "security-advisories@github.com",
"url": "https://github.com/c-ares/c-ares/security/advisories/GHSA-6hxc-62jh-p29v"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.openwall.com/lists/oss-security/2025/04/08/3"
}
],
"sourceIdentifier": "security-advisories@github.com",
"vulnStatus": "Deferred",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-416"
}
],
"source": "security-advisories@github.com",
"type": "Secondary"
}
]
}
MSRC_CVE-2025-31498
Vulnerability from csaf_microsoft - Published: 2025-04-02 00:00 - Updated: 2025-04-16 00:00Summary
c-ares has a use-after-free in read_answers()
Notes
Additional Resources: To determine the support lifecycle for your software, see the Microsoft Support Lifecycle: https://support.microsoft.com/lifecycle
Disclaimer: The information provided in the Microsoft Knowledge Base is provided \"as is\" without warranty of any kind. Microsoft disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. In no event shall Microsoft Corporation or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Microsoft Corporation or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply.
References
4 references
| URL | Category |
|---|---|
| https://msrc.microsoft.com/csaf/vex/2025/msrc_cve… | self |
| https://support.microsoft.com/lifecycle | external |
| https://www.first.org/cvss | external |
| https://msrc.microsoft.com/csaf/vex/2025/msrc_cve… | self |
{
"document": {
"category": "csaf_vex",
"csaf_version": "2.0",
"distribution": {
"text": "Public",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en-US",
"notes": [
{
"category": "general",
"text": "To determine the support lifecycle for your software, see the Microsoft Support Lifecycle: https://support.microsoft.com/lifecycle",
"title": "Additional Resources"
},
{
"category": "legal_disclaimer",
"text": "The information provided in the Microsoft Knowledge Base is provided \\\"as is\\\" without warranty of any kind. Microsoft disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. In no event shall Microsoft Corporation or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Microsoft Corporation or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply.",
"title": "Disclaimer"
}
],
"publisher": {
"category": "vendor",
"contact_details": "secure@microsoft.com",
"name": "Microsoft Security Response Center",
"namespace": "https://msrc.microsoft.com"
},
"references": [
{
"category": "self",
"summary": "CVE-2025-31498 c-ares has a use-after-free in read_answers() - VEX",
"url": "https://msrc.microsoft.com/csaf/vex/2025/msrc_cve-2025-31498.json"
},
{
"category": "external",
"summary": "Microsoft Support Lifecycle",
"url": "https://support.microsoft.com/lifecycle"
},
{
"category": "external",
"summary": "Common Vulnerability Scoring System",
"url": "https://www.first.org/cvss"
}
],
"title": "c-ares has a use-after-free in read_answers()",
"tracking": {
"current_release_date": "2025-04-16T00:00:00.000Z",
"generator": {
"date": "2025-10-20T03:11:13.607Z",
"engine": {
"name": "MSRC Generator",
"version": "1.0"
}
},
"id": "msrc_CVE-2025-31498",
"initial_release_date": "2025-04-02T00:00:00.000Z",
"revision_history": [
{
"date": "2025-04-16T00:00:00.000Z",
"legacy_version": "1",
"number": "1",
"summary": "Information published."
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "3.0",
"product": {
"name": "Azure Linux 3.0",
"product_id": "17084"
}
}
],
"category": "product_name",
"name": "Azure Linux"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cazl3 fluent-bit 3.1.9-4",
"product": {
"name": "\u003cazl3 fluent-bit 3.1.9-4",
"product_id": "1"
}
},
{
"category": "product_version",
"name": "azl3 fluent-bit 3.1.9-4",
"product": {
"name": "azl3 fluent-bit 3.1.9-4",
"product_id": "19445"
}
}
],
"category": "product_name",
"name": "fluent-bit"
}
],
"category": "vendor",
"name": "Microsoft"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "\u003cazl3 fluent-bit 3.1.9-4 as a component of Azure Linux 3.0",
"product_id": "17084-1"
},
"product_reference": "1",
"relates_to_product_reference": "17084"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "azl3 fluent-bit 3.1.9-4 as a component of Azure Linux 3.0",
"product_id": "19445-17084"
},
"product_reference": "19445",
"relates_to_product_reference": "17084"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-31498",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"notes": [
{
"category": "general",
"text": "GitHub_M",
"title": "Assigning CNA"
}
],
"product_status": {
"fixed": [
"19445-17084"
],
"known_affected": [
"17084-1"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-31498 c-ares has a use-after-free in read_answers() - VEX",
"url": "https://msrc.microsoft.com/csaf/vex/2025/msrc_cve-2025-31498.json"
}
],
"remediations": [
{
"category": "vendor_fix",
"date": "2025-04-16T00:00:00.000Z",
"details": "3.1.9-4:Security Update:https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade",
"product_ids": [
"17084-1"
],
"url": "https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade"
}
],
"title": "c-ares has a use-after-free in read_answers()"
}
]
}
OPENSUSE-SU-2025:14977-1
Vulnerability from csaf_opensuse - Published: 2025-04-09 00:00 - Updated: 2025-04-09 00:00Summary
c-ares-devel-1.34.5-1.1 on GA media
Severity
Moderate
Notes
Title of the patch: c-ares-devel-1.34.5-1.1 on GA media
Description of the patch: These are all security issues fixed in the c-ares-devel-1.34.5-1.1 package on the GA media of openSUSE Tumbleweed.
Patchnames: openSUSE-Tumbleweed-2025-14977
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
6.5 (Medium)
Affected products
Recommended
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:c-ares-devel-1.34.5-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:c-ares-devel-1.34.5-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:c-ares-devel-1.34.5-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:c-ares-devel-1.34.5-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:c-ares-utils-1.34.5-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:c-ares-utils-1.34.5-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:c-ares-utils-1.34.5-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:c-ares-utils-1.34.5-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:libcares2-1.34.5-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:libcares2-1.34.5-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:libcares2-1.34.5-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:libcares2-1.34.5-1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:libcares2-32bit-1.34.5-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:libcares2-32bit-1.34.5-1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:libcares2-32bit-1.34.5-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:libcares2-32bit-1.34.5-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
References
5 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "c-ares-devel-1.34.5-1.1 on GA media",
"title": "Title of the patch"
},
{
"category": "description",
"text": "These are all security issues fixed in the c-ares-devel-1.34.5-1.1 package on the GA media of openSUSE Tumbleweed.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Tumbleweed-2025-14977",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2025_14977-1.json"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-31498 page",
"url": "https://www.suse.com/security/cve/CVE-2025-31498/"
}
],
"title": "c-ares-devel-1.34.5-1.1 on GA media",
"tracking": {
"current_release_date": "2025-04-09T00:00:00Z",
"generator": {
"date": "2025-04-09T00:00:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2025:14977-1",
"initial_release_date": "2025-04-09T00:00:00Z",
"revision_history": [
{
"date": "2025-04-09T00:00:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "c-ares-devel-1.34.5-1.1.aarch64",
"product": {
"name": "c-ares-devel-1.34.5-1.1.aarch64",
"product_id": "c-ares-devel-1.34.5-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "c-ares-utils-1.34.5-1.1.aarch64",
"product": {
"name": "c-ares-utils-1.34.5-1.1.aarch64",
"product_id": "c-ares-utils-1.34.5-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "libcares2-1.34.5-1.1.aarch64",
"product": {
"name": "libcares2-1.34.5-1.1.aarch64",
"product_id": "libcares2-1.34.5-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "libcares2-32bit-1.34.5-1.1.aarch64",
"product": {
"name": "libcares2-32bit-1.34.5-1.1.aarch64",
"product_id": "libcares2-32bit-1.34.5-1.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "c-ares-devel-1.34.5-1.1.ppc64le",
"product": {
"name": "c-ares-devel-1.34.5-1.1.ppc64le",
"product_id": "c-ares-devel-1.34.5-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "c-ares-utils-1.34.5-1.1.ppc64le",
"product": {
"name": "c-ares-utils-1.34.5-1.1.ppc64le",
"product_id": "c-ares-utils-1.34.5-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libcares2-1.34.5-1.1.ppc64le",
"product": {
"name": "libcares2-1.34.5-1.1.ppc64le",
"product_id": "libcares2-1.34.5-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libcares2-32bit-1.34.5-1.1.ppc64le",
"product": {
"name": "libcares2-32bit-1.34.5-1.1.ppc64le",
"product_id": "libcares2-32bit-1.34.5-1.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "c-ares-devel-1.34.5-1.1.s390x",
"product": {
"name": "c-ares-devel-1.34.5-1.1.s390x",
"product_id": "c-ares-devel-1.34.5-1.1.s390x"
}
},
{
"category": "product_version",
"name": "c-ares-utils-1.34.5-1.1.s390x",
"product": {
"name": "c-ares-utils-1.34.5-1.1.s390x",
"product_id": "c-ares-utils-1.34.5-1.1.s390x"
}
},
{
"category": "product_version",
"name": "libcares2-1.34.5-1.1.s390x",
"product": {
"name": "libcares2-1.34.5-1.1.s390x",
"product_id": "libcares2-1.34.5-1.1.s390x"
}
},
{
"category": "product_version",
"name": "libcares2-32bit-1.34.5-1.1.s390x",
"product": {
"name": "libcares2-32bit-1.34.5-1.1.s390x",
"product_id": "libcares2-32bit-1.34.5-1.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "c-ares-devel-1.34.5-1.1.x86_64",
"product": {
"name": "c-ares-devel-1.34.5-1.1.x86_64",
"product_id": "c-ares-devel-1.34.5-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "c-ares-utils-1.34.5-1.1.x86_64",
"product": {
"name": "c-ares-utils-1.34.5-1.1.x86_64",
"product_id": "c-ares-utils-1.34.5-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "libcares2-1.34.5-1.1.x86_64",
"product": {
"name": "libcares2-1.34.5-1.1.x86_64",
"product_id": "libcares2-1.34.5-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "libcares2-32bit-1.34.5-1.1.x86_64",
"product": {
"name": "libcares2-32bit-1.34.5-1.1.x86_64",
"product_id": "libcares2-32bit-1.34.5-1.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Tumbleweed",
"product": {
"name": "openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:tumbleweed"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "c-ares-devel-1.34.5-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:c-ares-devel-1.34.5-1.1.aarch64"
},
"product_reference": "c-ares-devel-1.34.5-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "c-ares-devel-1.34.5-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:c-ares-devel-1.34.5-1.1.ppc64le"
},
"product_reference": "c-ares-devel-1.34.5-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "c-ares-devel-1.34.5-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:c-ares-devel-1.34.5-1.1.s390x"
},
"product_reference": "c-ares-devel-1.34.5-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "c-ares-devel-1.34.5-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:c-ares-devel-1.34.5-1.1.x86_64"
},
"product_reference": "c-ares-devel-1.34.5-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "c-ares-utils-1.34.5-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:c-ares-utils-1.34.5-1.1.aarch64"
},
"product_reference": "c-ares-utils-1.34.5-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "c-ares-utils-1.34.5-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:c-ares-utils-1.34.5-1.1.ppc64le"
},
"product_reference": "c-ares-utils-1.34.5-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "c-ares-utils-1.34.5-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:c-ares-utils-1.34.5-1.1.s390x"
},
"product_reference": "c-ares-utils-1.34.5-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "c-ares-utils-1.34.5-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:c-ares-utils-1.34.5-1.1.x86_64"
},
"product_reference": "c-ares-utils-1.34.5-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcares2-1.34.5-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libcares2-1.34.5-1.1.aarch64"
},
"product_reference": "libcares2-1.34.5-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcares2-1.34.5-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libcares2-1.34.5-1.1.ppc64le"
},
"product_reference": "libcares2-1.34.5-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcares2-1.34.5-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libcares2-1.34.5-1.1.s390x"
},
"product_reference": "libcares2-1.34.5-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcares2-1.34.5-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libcares2-1.34.5-1.1.x86_64"
},
"product_reference": "libcares2-1.34.5-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcares2-32bit-1.34.5-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libcares2-32bit-1.34.5-1.1.aarch64"
},
"product_reference": "libcares2-32bit-1.34.5-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcares2-32bit-1.34.5-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libcares2-32bit-1.34.5-1.1.ppc64le"
},
"product_reference": "libcares2-32bit-1.34.5-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcares2-32bit-1.34.5-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libcares2-32bit-1.34.5-1.1.s390x"
},
"product_reference": "libcares2-32bit-1.34.5-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libcares2-32bit-1.34.5-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libcares2-32bit-1.34.5-1.1.x86_64"
},
"product_reference": "libcares2-32bit-1.34.5-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-31498",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-31498"
}
],
"notes": [
{
"category": "general",
"text": "c-ares is an asynchronous resolver library. From 1.32.3 through 1.34.4, there is a use-after-free in read_answers() when process_answer() may re-enqueue a query either due to a DNS Cookie Failure or when the upstream server does not properly support EDNS, or possibly on TCP queries if the remote closed the connection immediately after a response. If there was an issue trying to put that new transaction on the wire, it would close the connection handle, but read_answers() was still expecting the connection handle to be available to possibly dequeue other responses. In theory a remote attacker might be able to trigger this by flooding the target with ICMP UNREACHABLE packets if they also control the upstream nameserver and can return a result with one of those conditions, this has been untested. Otherwise only a local attacker might be able to change system behavior to make send()/write() return a failure condition. This vulnerability is fixed in 1.34.5.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:c-ares-devel-1.34.5-1.1.aarch64",
"openSUSE Tumbleweed:c-ares-devel-1.34.5-1.1.ppc64le",
"openSUSE Tumbleweed:c-ares-devel-1.34.5-1.1.s390x",
"openSUSE Tumbleweed:c-ares-devel-1.34.5-1.1.x86_64",
"openSUSE Tumbleweed:c-ares-utils-1.34.5-1.1.aarch64",
"openSUSE Tumbleweed:c-ares-utils-1.34.5-1.1.ppc64le",
"openSUSE Tumbleweed:c-ares-utils-1.34.5-1.1.s390x",
"openSUSE Tumbleweed:c-ares-utils-1.34.5-1.1.x86_64",
"openSUSE Tumbleweed:libcares2-1.34.5-1.1.aarch64",
"openSUSE Tumbleweed:libcares2-1.34.5-1.1.ppc64le",
"openSUSE Tumbleweed:libcares2-1.34.5-1.1.s390x",
"openSUSE Tumbleweed:libcares2-1.34.5-1.1.x86_64",
"openSUSE Tumbleweed:libcares2-32bit-1.34.5-1.1.aarch64",
"openSUSE Tumbleweed:libcares2-32bit-1.34.5-1.1.ppc64le",
"openSUSE Tumbleweed:libcares2-32bit-1.34.5-1.1.s390x",
"openSUSE Tumbleweed:libcares2-32bit-1.34.5-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-31498",
"url": "https://www.suse.com/security/cve/CVE-2025-31498"
},
{
"category": "external",
"summary": "SUSE Bug 1240955 for CVE-2025-31498",
"url": "https://bugzilla.suse.com/1240955"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:c-ares-devel-1.34.5-1.1.aarch64",
"openSUSE Tumbleweed:c-ares-devel-1.34.5-1.1.ppc64le",
"openSUSE Tumbleweed:c-ares-devel-1.34.5-1.1.s390x",
"openSUSE Tumbleweed:c-ares-devel-1.34.5-1.1.x86_64",
"openSUSE Tumbleweed:c-ares-utils-1.34.5-1.1.aarch64",
"openSUSE Tumbleweed:c-ares-utils-1.34.5-1.1.ppc64le",
"openSUSE Tumbleweed:c-ares-utils-1.34.5-1.1.s390x",
"openSUSE Tumbleweed:c-ares-utils-1.34.5-1.1.x86_64",
"openSUSE Tumbleweed:libcares2-1.34.5-1.1.aarch64",
"openSUSE Tumbleweed:libcares2-1.34.5-1.1.ppc64le",
"openSUSE Tumbleweed:libcares2-1.34.5-1.1.s390x",
"openSUSE Tumbleweed:libcares2-1.34.5-1.1.x86_64",
"openSUSE Tumbleweed:libcares2-32bit-1.34.5-1.1.aarch64",
"openSUSE Tumbleweed:libcares2-32bit-1.34.5-1.1.ppc64le",
"openSUSE Tumbleweed:libcares2-32bit-1.34.5-1.1.s390x",
"openSUSE Tumbleweed:libcares2-32bit-1.34.5-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:c-ares-devel-1.34.5-1.1.aarch64",
"openSUSE Tumbleweed:c-ares-devel-1.34.5-1.1.ppc64le",
"openSUSE Tumbleweed:c-ares-devel-1.34.5-1.1.s390x",
"openSUSE Tumbleweed:c-ares-devel-1.34.5-1.1.x86_64",
"openSUSE Tumbleweed:c-ares-utils-1.34.5-1.1.aarch64",
"openSUSE Tumbleweed:c-ares-utils-1.34.5-1.1.ppc64le",
"openSUSE Tumbleweed:c-ares-utils-1.34.5-1.1.s390x",
"openSUSE Tumbleweed:c-ares-utils-1.34.5-1.1.x86_64",
"openSUSE Tumbleweed:libcares2-1.34.5-1.1.aarch64",
"openSUSE Tumbleweed:libcares2-1.34.5-1.1.ppc64le",
"openSUSE Tumbleweed:libcares2-1.34.5-1.1.s390x",
"openSUSE Tumbleweed:libcares2-1.34.5-1.1.x86_64",
"openSUSE Tumbleweed:libcares2-32bit-1.34.5-1.1.aarch64",
"openSUSE Tumbleweed:libcares2-32bit-1.34.5-1.1.ppc64le",
"openSUSE Tumbleweed:libcares2-32bit-1.34.5-1.1.s390x",
"openSUSE Tumbleweed:libcares2-32bit-1.34.5-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-04-09T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2025-31498"
}
]
}
RHSA-2025:4459
Vulnerability from csaf_redhat - Published: 2025-05-05 10:39 - Updated: 2026-06-02 15:22Summary
Red Hat Security Advisory: nodejs:22 security update
Severity
Important
Notes
Topic: An update for the nodejs:22 module is now available for Red Hat Enterprise Linux 8.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language.
Security Fix(es):
* c-ares: c-ares has a use-after-free in read_answers() (CVE-2025-31498)
* SQLite: integer overflow in SQLite (CVE-2025-3277)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in SQLite’s `concat_ws()` function, where an integer overflow can be triggered. The resulting truncated integer can allocate a buffer. When SQLite writes the resulting string to the buffer, it uses the original, untruncated size, and a wild heap buffer overflow size of around 4GB can occur. This issue can result in arbitrary code execution.
7.3 (High)
Affected products
Fixed
43 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.src::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:nodejs-debugsource-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:nodejs-debugsource-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:nodejs-debugsource-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:nodejs-debugsource-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:nodejs-devel-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:nodejs-devel-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:nodejs-devel-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:nodejs-devel-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:nodejs-docs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.noarch::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el8.10.0+23068+28ff2340.noarch::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el8.10.0+23068+28ff2340.src::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el8.10.0+23068+28ff2340.noarch::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el8.10.0+23068+28ff2340.src::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:nodejs-packaging-bundler-0:2021.06-4.module+el8.10.0+23068+28ff2340.noarch::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.15.0.1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.15.0.1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.15.0.1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.15.0.1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Important
A flaw was found in c-ares. This vulnerability allows a remote or local attacker to cause a use-after-free, potentially leading to application-level denial of service or other unexpected behavior via manipulation of DNS responses or network conditions during query processing.
7.0 (High)
Affected products
Fixed
43 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.src::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:nodejs-debugsource-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:nodejs-debugsource-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:nodejs-debugsource-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:nodejs-debugsource-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:nodejs-devel-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:nodejs-devel-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:nodejs-devel-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:nodejs-devel-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:nodejs-docs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.noarch::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el8.10.0+23068+28ff2340.noarch::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el8.10.0+23068+28ff2340.src::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el8.10.0+23068+28ff2340.noarch::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el8.10.0+23068+28ff2340.src::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:nodejs-packaging-bundler-0:2021.06-4.module+el8.10.0+23068+28ff2340.noarch::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.15.0.1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.15.0.1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.15.0.1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.15.0.1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
References
19 references
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for the nodejs:22 module is now available for Red Hat Enterprise Linux 8.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. \n\nSecurity Fix(es):\n\n* c-ares: c-ares has a use-after-free in read_answers() (CVE-2025-31498)\n\n* SQLite: integer overflow in SQLite (CVE-2025-3277)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:4459",
"url": "https://access.redhat.com/errata/RHSA-2025:4459"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2358271",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2358271"
},
{
"category": "external",
"summary": "2359553",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2359553"
},
{
"category": "external",
"summary": "RHEL-78761",
"url": "https://issues.redhat.com/browse/RHEL-78761"
},
{
"category": "external",
"summary": "RHEL-88883",
"url": "https://issues.redhat.com/browse/RHEL-88883"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_4459.json"
}
],
"title": "Red Hat Security Advisory: nodejs:22 security update",
"tracking": {
"current_release_date": "2026-06-02T15:22:21+00:00",
"generator": {
"date": "2026-06-02T15:22:21+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.8.1"
}
},
"id": "RHSA-2025:4459",
"initial_release_date": "2025-05-05T10:39:44+00:00",
"revision_history": [
{
"date": "2025-05-05T10:39:44+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-05-05T10:39:44+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-06-02T15:22:21+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream (v. 8)",
"product": {
"name": "Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:8::appstream"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.src::nodejs:22",
"product": {
"name": "nodejs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.src (nodejs:22)",
"product_id": "nodejs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.src::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs@22.15.0-1.module%2Bel8.10.0%2B23068%2B28ff2340?arch=src\u0026epoch=1\u0026rpmmod=nodejs:22:8100020250429143334:6d880403"
}
}
},
{
"category": "product_version",
"name": "nodejs-nodemon-0:3.0.1-1.module+el8.10.0+23068+28ff2340.src::nodejs:22",
"product": {
"name": "nodejs-nodemon-0:3.0.1-1.module+el8.10.0+23068+28ff2340.src (nodejs:22)",
"product_id": "nodejs-nodemon-0:3.0.1-1.module+el8.10.0+23068+28ff2340.src::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-nodemon@3.0.1-1.module%2Bel8.10.0%2B23068%2B28ff2340?arch=src\u0026rpmmod=nodejs:22:8100020250429143334:6d880403"
}
}
},
{
"category": "product_version",
"name": "nodejs-packaging-0:2021.06-4.module+el8.10.0+23068+28ff2340.src::nodejs:22",
"product": {
"name": "nodejs-packaging-0:2021.06-4.module+el8.10.0+23068+28ff2340.src (nodejs:22)",
"product_id": "nodejs-packaging-0:2021.06-4.module+el8.10.0+23068+28ff2340.src::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-packaging@2021.06-4.module%2Bel8.10.0%2B23068%2B28ff2340?arch=src\u0026rpmmod=nodejs:22:8100020250429143334:6d880403"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs-docs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.noarch::nodejs:22",
"product": {
"name": "nodejs-docs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.noarch (nodejs:22)",
"product_id": "nodejs-docs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.noarch::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-docs@22.15.0-1.module%2Bel8.10.0%2B23068%2B28ff2340?arch=noarch\u0026epoch=1\u0026rpmmod=nodejs:22:8100020250429143334:6d880403"
}
}
},
{
"category": "product_version",
"name": "nodejs-nodemon-0:3.0.1-1.module+el8.10.0+23068+28ff2340.noarch::nodejs:22",
"product": {
"name": "nodejs-nodemon-0:3.0.1-1.module+el8.10.0+23068+28ff2340.noarch (nodejs:22)",
"product_id": "nodejs-nodemon-0:3.0.1-1.module+el8.10.0+23068+28ff2340.noarch::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-nodemon@3.0.1-1.module%2Bel8.10.0%2B23068%2B28ff2340?arch=noarch\u0026rpmmod=nodejs:22:8100020250429143334:6d880403"
}
}
},
{
"category": "product_version",
"name": "nodejs-packaging-0:2021.06-4.module+el8.10.0+23068+28ff2340.noarch::nodejs:22",
"product": {
"name": "nodejs-packaging-0:2021.06-4.module+el8.10.0+23068+28ff2340.noarch (nodejs:22)",
"product_id": "nodejs-packaging-0:2021.06-4.module+el8.10.0+23068+28ff2340.noarch::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-packaging@2021.06-4.module%2Bel8.10.0%2B23068%2B28ff2340?arch=noarch\u0026rpmmod=nodejs:22:8100020250429143334:6d880403"
}
}
},
{
"category": "product_version",
"name": "nodejs-packaging-bundler-0:2021.06-4.module+el8.10.0+23068+28ff2340.noarch::nodejs:22",
"product": {
"name": "nodejs-packaging-bundler-0:2021.06-4.module+el8.10.0+23068+28ff2340.noarch (nodejs:22)",
"product_id": "nodejs-packaging-bundler-0:2021.06-4.module+el8.10.0+23068+28ff2340.noarch::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-packaging-bundler@2021.06-4.module%2Bel8.10.0%2B23068%2B28ff2340?arch=noarch\u0026rpmmod=nodejs:22:8100020250429143334:6d880403"
}
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22",
"product": {
"name": "nodejs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64 (nodejs:22)",
"product_id": "nodejs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs@22.15.0-1.module%2Bel8.10.0%2B23068%2B28ff2340?arch=aarch64\u0026epoch=1\u0026rpmmod=nodejs:22:8100020250429143334:6d880403"
}
}
},
{
"category": "product_version",
"name": "nodejs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22",
"product": {
"name": "nodejs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64 (nodejs:22)",
"product_id": "nodejs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-debuginfo@22.15.0-1.module%2Bel8.10.0%2B23068%2B28ff2340?arch=aarch64\u0026epoch=1\u0026rpmmod=nodejs:22:8100020250429143334:6d880403"
}
}
},
{
"category": "product_version",
"name": "nodejs-debugsource-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22",
"product": {
"name": "nodejs-debugsource-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64 (nodejs:22)",
"product_id": "nodejs-debugsource-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-debugsource@22.15.0-1.module%2Bel8.10.0%2B23068%2B28ff2340?arch=aarch64\u0026epoch=1\u0026rpmmod=nodejs:22:8100020250429143334:6d880403"
}
}
},
{
"category": "product_version",
"name": "nodejs-devel-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22",
"product": {
"name": "nodejs-devel-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64 (nodejs:22)",
"product_id": "nodejs-devel-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-devel@22.15.0-1.module%2Bel8.10.0%2B23068%2B28ff2340?arch=aarch64\u0026epoch=1\u0026rpmmod=nodejs:22:8100020250429143334:6d880403"
}
}
},
{
"category": "product_version",
"name": "nodejs-full-i18n-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22",
"product": {
"name": "nodejs-full-i18n-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64 (nodejs:22)",
"product_id": "nodejs-full-i18n-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-full-i18n@22.15.0-1.module%2Bel8.10.0%2B23068%2B28ff2340?arch=aarch64\u0026epoch=1\u0026rpmmod=nodejs:22:8100020250429143334:6d880403"
}
}
},
{
"category": "product_version",
"name": "nodejs-libs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22",
"product": {
"name": "nodejs-libs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64 (nodejs:22)",
"product_id": "nodejs-libs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-libs@22.15.0-1.module%2Bel8.10.0%2B23068%2B28ff2340?arch=aarch64\u0026epoch=1\u0026rpmmod=nodejs:22:8100020250429143334:6d880403"
}
}
},
{
"category": "product_version",
"name": "nodejs-libs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22",
"product": {
"name": "nodejs-libs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64 (nodejs:22)",
"product_id": "nodejs-libs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-libs-debuginfo@22.15.0-1.module%2Bel8.10.0%2B23068%2B28ff2340?arch=aarch64\u0026epoch=1\u0026rpmmod=nodejs:22:8100020250429143334:6d880403"
}
}
},
{
"category": "product_version",
"name": "npm-1:10.9.2-1.22.15.0.1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22",
"product": {
"name": "npm-1:10.9.2-1.22.15.0.1.module+el8.10.0+23068+28ff2340.aarch64 (nodejs:22)",
"product_id": "npm-1:10.9.2-1.22.15.0.1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/npm@10.9.2-1.22.15.0.1.module%2Bel8.10.0%2B23068%2B28ff2340?arch=aarch64\u0026epoch=1\u0026rpmmod=nodejs:22:8100020250429143334:6d880403"
}
}
},
{
"category": "product_version",
"name": "v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22",
"product": {
"name": "v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el8.10.0+23068+28ff2340.aarch64 (nodejs:22)",
"product_id": "v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/v8-12.4-devel@12.4.254.21-1.22.15.0.1.module%2Bel8.10.0%2B23068%2B28ff2340?arch=aarch64\u0026epoch=3\u0026rpmmod=nodejs:22:8100020250429143334:6d880403"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22",
"product": {
"name": "nodejs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le (nodejs:22)",
"product_id": "nodejs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs@22.15.0-1.module%2Bel8.10.0%2B23068%2B28ff2340?arch=ppc64le\u0026epoch=1\u0026rpmmod=nodejs:22:8100020250429143334:6d880403"
}
}
},
{
"category": "product_version",
"name": "nodejs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22",
"product": {
"name": "nodejs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le (nodejs:22)",
"product_id": "nodejs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-debuginfo@22.15.0-1.module%2Bel8.10.0%2B23068%2B28ff2340?arch=ppc64le\u0026epoch=1\u0026rpmmod=nodejs:22:8100020250429143334:6d880403"
}
}
},
{
"category": "product_version",
"name": "nodejs-debugsource-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22",
"product": {
"name": "nodejs-debugsource-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le (nodejs:22)",
"product_id": "nodejs-debugsource-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-debugsource@22.15.0-1.module%2Bel8.10.0%2B23068%2B28ff2340?arch=ppc64le\u0026epoch=1\u0026rpmmod=nodejs:22:8100020250429143334:6d880403"
}
}
},
{
"category": "product_version",
"name": "nodejs-devel-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22",
"product": {
"name": "nodejs-devel-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le (nodejs:22)",
"product_id": "nodejs-devel-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-devel@22.15.0-1.module%2Bel8.10.0%2B23068%2B28ff2340?arch=ppc64le\u0026epoch=1\u0026rpmmod=nodejs:22:8100020250429143334:6d880403"
}
}
},
{
"category": "product_version",
"name": "nodejs-full-i18n-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22",
"product": {
"name": "nodejs-full-i18n-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le (nodejs:22)",
"product_id": "nodejs-full-i18n-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-full-i18n@22.15.0-1.module%2Bel8.10.0%2B23068%2B28ff2340?arch=ppc64le\u0026epoch=1\u0026rpmmod=nodejs:22:8100020250429143334:6d880403"
}
}
},
{
"category": "product_version",
"name": "nodejs-libs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22",
"product": {
"name": "nodejs-libs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le (nodejs:22)",
"product_id": "nodejs-libs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-libs@22.15.0-1.module%2Bel8.10.0%2B23068%2B28ff2340?arch=ppc64le\u0026epoch=1\u0026rpmmod=nodejs:22:8100020250429143334:6d880403"
}
}
},
{
"category": "product_version",
"name": "nodejs-libs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22",
"product": {
"name": "nodejs-libs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le (nodejs:22)",
"product_id": "nodejs-libs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-libs-debuginfo@22.15.0-1.module%2Bel8.10.0%2B23068%2B28ff2340?arch=ppc64le\u0026epoch=1\u0026rpmmod=nodejs:22:8100020250429143334:6d880403"
}
}
},
{
"category": "product_version",
"name": "npm-1:10.9.2-1.22.15.0.1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22",
"product": {
"name": "npm-1:10.9.2-1.22.15.0.1.module+el8.10.0+23068+28ff2340.ppc64le (nodejs:22)",
"product_id": "npm-1:10.9.2-1.22.15.0.1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/npm@10.9.2-1.22.15.0.1.module%2Bel8.10.0%2B23068%2B28ff2340?arch=ppc64le\u0026epoch=1\u0026rpmmod=nodejs:22:8100020250429143334:6d880403"
}
}
},
{
"category": "product_version",
"name": "v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22",
"product": {
"name": "v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el8.10.0+23068+28ff2340.ppc64le (nodejs:22)",
"product_id": "v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/v8-12.4-devel@12.4.254.21-1.22.15.0.1.module%2Bel8.10.0%2B23068%2B28ff2340?arch=ppc64le\u0026epoch=3\u0026rpmmod=nodejs:22:8100020250429143334:6d880403"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22",
"product": {
"name": "nodejs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x (nodejs:22)",
"product_id": "nodejs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs@22.15.0-1.module%2Bel8.10.0%2B23068%2B28ff2340?arch=s390x\u0026epoch=1\u0026rpmmod=nodejs:22:8100020250429143334:6d880403"
}
}
},
{
"category": "product_version",
"name": "nodejs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22",
"product": {
"name": "nodejs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x (nodejs:22)",
"product_id": "nodejs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-debuginfo@22.15.0-1.module%2Bel8.10.0%2B23068%2B28ff2340?arch=s390x\u0026epoch=1\u0026rpmmod=nodejs:22:8100020250429143334:6d880403"
}
}
},
{
"category": "product_version",
"name": "nodejs-debugsource-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22",
"product": {
"name": "nodejs-debugsource-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x (nodejs:22)",
"product_id": "nodejs-debugsource-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-debugsource@22.15.0-1.module%2Bel8.10.0%2B23068%2B28ff2340?arch=s390x\u0026epoch=1\u0026rpmmod=nodejs:22:8100020250429143334:6d880403"
}
}
},
{
"category": "product_version",
"name": "nodejs-devel-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22",
"product": {
"name": "nodejs-devel-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x (nodejs:22)",
"product_id": "nodejs-devel-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-devel@22.15.0-1.module%2Bel8.10.0%2B23068%2B28ff2340?arch=s390x\u0026epoch=1\u0026rpmmod=nodejs:22:8100020250429143334:6d880403"
}
}
},
{
"category": "product_version",
"name": "nodejs-full-i18n-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22",
"product": {
"name": "nodejs-full-i18n-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x (nodejs:22)",
"product_id": "nodejs-full-i18n-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-full-i18n@22.15.0-1.module%2Bel8.10.0%2B23068%2B28ff2340?arch=s390x\u0026epoch=1\u0026rpmmod=nodejs:22:8100020250429143334:6d880403"
}
}
},
{
"category": "product_version",
"name": "nodejs-libs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22",
"product": {
"name": "nodejs-libs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x (nodejs:22)",
"product_id": "nodejs-libs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-libs@22.15.0-1.module%2Bel8.10.0%2B23068%2B28ff2340?arch=s390x\u0026epoch=1\u0026rpmmod=nodejs:22:8100020250429143334:6d880403"
}
}
},
{
"category": "product_version",
"name": "nodejs-libs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22",
"product": {
"name": "nodejs-libs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x (nodejs:22)",
"product_id": "nodejs-libs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-libs-debuginfo@22.15.0-1.module%2Bel8.10.0%2B23068%2B28ff2340?arch=s390x\u0026epoch=1\u0026rpmmod=nodejs:22:8100020250429143334:6d880403"
}
}
},
{
"category": "product_version",
"name": "npm-1:10.9.2-1.22.15.0.1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22",
"product": {
"name": "npm-1:10.9.2-1.22.15.0.1.module+el8.10.0+23068+28ff2340.s390x (nodejs:22)",
"product_id": "npm-1:10.9.2-1.22.15.0.1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/npm@10.9.2-1.22.15.0.1.module%2Bel8.10.0%2B23068%2B28ff2340?arch=s390x\u0026epoch=1\u0026rpmmod=nodejs:22:8100020250429143334:6d880403"
}
}
},
{
"category": "product_version",
"name": "v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22",
"product": {
"name": "v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el8.10.0+23068+28ff2340.s390x (nodejs:22)",
"product_id": "v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/v8-12.4-devel@12.4.254.21-1.22.15.0.1.module%2Bel8.10.0%2B23068%2B28ff2340?arch=s390x\u0026epoch=3\u0026rpmmod=nodejs:22:8100020250429143334:6d880403"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22",
"product": {
"name": "nodejs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64 (nodejs:22)",
"product_id": "nodejs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs@22.15.0-1.module%2Bel8.10.0%2B23068%2B28ff2340?arch=x86_64\u0026epoch=1\u0026rpmmod=nodejs:22:8100020250429143334:6d880403"
}
}
},
{
"category": "product_version",
"name": "nodejs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22",
"product": {
"name": "nodejs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64 (nodejs:22)",
"product_id": "nodejs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-debuginfo@22.15.0-1.module%2Bel8.10.0%2B23068%2B28ff2340?arch=x86_64\u0026epoch=1\u0026rpmmod=nodejs:22:8100020250429143334:6d880403"
}
}
},
{
"category": "product_version",
"name": "nodejs-debugsource-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22",
"product": {
"name": "nodejs-debugsource-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64 (nodejs:22)",
"product_id": "nodejs-debugsource-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-debugsource@22.15.0-1.module%2Bel8.10.0%2B23068%2B28ff2340?arch=x86_64\u0026epoch=1\u0026rpmmod=nodejs:22:8100020250429143334:6d880403"
}
}
},
{
"category": "product_version",
"name": "nodejs-devel-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22",
"product": {
"name": "nodejs-devel-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64 (nodejs:22)",
"product_id": "nodejs-devel-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-devel@22.15.0-1.module%2Bel8.10.0%2B23068%2B28ff2340?arch=x86_64\u0026epoch=1\u0026rpmmod=nodejs:22:8100020250429143334:6d880403"
}
}
},
{
"category": "product_version",
"name": "nodejs-full-i18n-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22",
"product": {
"name": "nodejs-full-i18n-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64 (nodejs:22)",
"product_id": "nodejs-full-i18n-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-full-i18n@22.15.0-1.module%2Bel8.10.0%2B23068%2B28ff2340?arch=x86_64\u0026epoch=1\u0026rpmmod=nodejs:22:8100020250429143334:6d880403"
}
}
},
{
"category": "product_version",
"name": "nodejs-libs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22",
"product": {
"name": "nodejs-libs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64 (nodejs:22)",
"product_id": "nodejs-libs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-libs@22.15.0-1.module%2Bel8.10.0%2B23068%2B28ff2340?arch=x86_64\u0026epoch=1\u0026rpmmod=nodejs:22:8100020250429143334:6d880403"
}
}
},
{
"category": "product_version",
"name": "nodejs-libs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22",
"product": {
"name": "nodejs-libs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64 (nodejs:22)",
"product_id": "nodejs-libs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-libs-debuginfo@22.15.0-1.module%2Bel8.10.0%2B23068%2B28ff2340?arch=x86_64\u0026epoch=1\u0026rpmmod=nodejs:22:8100020250429143334:6d880403"
}
}
},
{
"category": "product_version",
"name": "npm-1:10.9.2-1.22.15.0.1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22",
"product": {
"name": "npm-1:10.9.2-1.22.15.0.1.module+el8.10.0+23068+28ff2340.x86_64 (nodejs:22)",
"product_id": "npm-1:10.9.2-1.22.15.0.1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/npm@10.9.2-1.22.15.0.1.module%2Bel8.10.0%2B23068%2B28ff2340?arch=x86_64\u0026epoch=1\u0026rpmmod=nodejs:22:8100020250429143334:6d880403"
}
}
},
{
"category": "product_version",
"name": "v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22",
"product": {
"name": "v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el8.10.0+23068+28ff2340.x86_64 (nodejs:22)",
"product_id": "v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/v8-12.4-devel@12.4.254.21-1.22.15.0.1.module%2Bel8.10.0%2B23068%2B28ff2340?arch=x86_64\u0026epoch=3\u0026rpmmod=nodejs:22:8100020250429143334:6d880403"
}
}
}
],
"category": "architecture",
"name": "x86_64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64 (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22"
},
"product_reference": "nodejs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22"
},
"product_reference": "nodejs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22"
},
"product_reference": "nodejs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.src (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.src::nodejs:22"
},
"product_reference": "nodejs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.src::nodejs:22",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64 (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22"
},
"product_reference": "nodejs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64 (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22"
},
"product_reference": "nodejs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22"
},
"product_reference": "nodejs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22"
},
"product_reference": "nodejs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64 (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22"
},
"product_reference": "nodejs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-debugsource-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64 (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs-debugsource-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22"
},
"product_reference": "nodejs-debugsource-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-debugsource-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs-debugsource-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22"
},
"product_reference": "nodejs-debugsource-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-debugsource-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs-debugsource-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22"
},
"product_reference": "nodejs-debugsource-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-debugsource-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64 (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs-debugsource-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22"
},
"product_reference": "nodejs-debugsource-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-devel-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64 (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs-devel-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22"
},
"product_reference": "nodejs-devel-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-devel-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs-devel-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22"
},
"product_reference": "nodejs-devel-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-devel-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs-devel-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22"
},
"product_reference": "nodejs-devel-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-devel-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64 (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs-devel-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22"
},
"product_reference": "nodejs-devel-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-docs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.noarch (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs-docs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.noarch::nodejs:22"
},
"product_reference": "nodejs-docs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.noarch::nodejs:22",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-full-i18n-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64 (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22"
},
"product_reference": "nodejs-full-i18n-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-full-i18n-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22"
},
"product_reference": "nodejs-full-i18n-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-full-i18n-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22"
},
"product_reference": "nodejs-full-i18n-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-full-i18n-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64 (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22"
},
"product_reference": "nodejs-full-i18n-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-libs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64 (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22"
},
"product_reference": "nodejs-libs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-libs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22"
},
"product_reference": "nodejs-libs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-libs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22"
},
"product_reference": "nodejs-libs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-libs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64 (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22"
},
"product_reference": "nodejs-libs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-libs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64 (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22"
},
"product_reference": "nodejs-libs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-libs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22"
},
"product_reference": "nodejs-libs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-libs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22"
},
"product_reference": "nodejs-libs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-libs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64 (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22"
},
"product_reference": "nodejs-libs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-nodemon-0:3.0.1-1.module+el8.10.0+23068+28ff2340.noarch (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el8.10.0+23068+28ff2340.noarch::nodejs:22"
},
"product_reference": "nodejs-nodemon-0:3.0.1-1.module+el8.10.0+23068+28ff2340.noarch::nodejs:22",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-nodemon-0:3.0.1-1.module+el8.10.0+23068+28ff2340.src (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el8.10.0+23068+28ff2340.src::nodejs:22"
},
"product_reference": "nodejs-nodemon-0:3.0.1-1.module+el8.10.0+23068+28ff2340.src::nodejs:22",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-packaging-0:2021.06-4.module+el8.10.0+23068+28ff2340.noarch (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el8.10.0+23068+28ff2340.noarch::nodejs:22"
},
"product_reference": "nodejs-packaging-0:2021.06-4.module+el8.10.0+23068+28ff2340.noarch::nodejs:22",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-packaging-0:2021.06-4.module+el8.10.0+23068+28ff2340.src (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el8.10.0+23068+28ff2340.src::nodejs:22"
},
"product_reference": "nodejs-packaging-0:2021.06-4.module+el8.10.0+23068+28ff2340.src::nodejs:22",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-packaging-bundler-0:2021.06-4.module+el8.10.0+23068+28ff2340.noarch (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs-packaging-bundler-0:2021.06-4.module+el8.10.0+23068+28ff2340.noarch::nodejs:22"
},
"product_reference": "nodejs-packaging-bundler-0:2021.06-4.module+el8.10.0+23068+28ff2340.noarch::nodejs:22",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm-1:10.9.2-1.22.15.0.1.module+el8.10.0+23068+28ff2340.aarch64 (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.15.0.1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22"
},
"product_reference": "npm-1:10.9.2-1.22.15.0.1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm-1:10.9.2-1.22.15.0.1.module+el8.10.0+23068+28ff2340.ppc64le (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.15.0.1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22"
},
"product_reference": "npm-1:10.9.2-1.22.15.0.1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm-1:10.9.2-1.22.15.0.1.module+el8.10.0+23068+28ff2340.s390x (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.15.0.1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22"
},
"product_reference": "npm-1:10.9.2-1.22.15.0.1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm-1:10.9.2-1.22.15.0.1.module+el8.10.0+23068+28ff2340.x86_64 (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.15.0.1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22"
},
"product_reference": "npm-1:10.9.2-1.22.15.0.1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el8.10.0+23068+28ff2340.aarch64 (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22"
},
"product_reference": "v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el8.10.0+23068+28ff2340.ppc64le (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22"
},
"product_reference": "v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el8.10.0+23068+28ff2340.s390x (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22"
},
"product_reference": "v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el8.10.0+23068+28ff2340.x86_64 (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22"
},
"product_reference": "v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-3277",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"discovery_date": "2025-04-14T17:00:50.050896+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2359553"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in SQLite\u2019s `concat_ws()` function, where an integer overflow can be triggered. The resulting truncated integer can allocate a buffer. When SQLite writes the resulting string to the buffer, it uses the original, untruncated size, and a wild heap buffer overflow size of around 4GB can occur. This issue can result in arbitrary code execution.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "SQLite: integer overflow in SQLite",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "For Openshift, the bundled sqlite3.c does contain the affected concat_ws function, it is not included in the Rust bindings of the libsqlite3-sys crate, nor are there any indirect ways to call it. Therefore, this is dead code in this context, and Openshift is not affected.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.src::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debugsource-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debugsource-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debugsource-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debugsource-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-devel-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-devel-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-devel-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-devel-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-docs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.noarch::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el8.10.0+23068+28ff2340.noarch::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el8.10.0+23068+28ff2340.src::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el8.10.0+23068+28ff2340.noarch::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el8.10.0+23068+28ff2340.src::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-packaging-bundler-0:2021.06-4.module+el8.10.0+23068+28ff2340.noarch::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.15.0.1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.15.0.1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.15.0.1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.15.0.1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-3277"
},
{
"category": "external",
"summary": "RHBZ#2359553",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2359553"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-3277",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-3277"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-3277",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-3277"
},
{
"category": "external",
"summary": "https://sqlite.org/src/info/498e3f1cf57f164f",
"url": "https://sqlite.org/src/info/498e3f1cf57f164f"
}
],
"release_date": "2025-04-14T16:50:48.902000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-05-05T10:39:44+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.src::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debugsource-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debugsource-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debugsource-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debugsource-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-devel-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-devel-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-devel-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-devel-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-docs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.noarch::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el8.10.0+23068+28ff2340.noarch::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el8.10.0+23068+28ff2340.src::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el8.10.0+23068+28ff2340.noarch::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el8.10.0+23068+28ff2340.src::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-packaging-bundler-0:2021.06-4.module+el8.10.0+23068+28ff2340.noarch::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.15.0.1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.15.0.1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.15.0.1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.15.0.1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:4459"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.src::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debugsource-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debugsource-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debugsource-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debugsource-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-devel-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-devel-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-devel-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-devel-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-docs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.noarch::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el8.10.0+23068+28ff2340.noarch::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el8.10.0+23068+28ff2340.src::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el8.10.0+23068+28ff2340.noarch::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el8.10.0+23068+28ff2340.src::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-packaging-bundler-0:2021.06-4.module+el8.10.0+23068+28ff2340.noarch::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.15.0.1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.15.0.1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.15.0.1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.15.0.1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 7.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.src::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debugsource-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debugsource-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debugsource-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debugsource-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-devel-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-devel-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-devel-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-devel-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-docs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.noarch::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el8.10.0+23068+28ff2340.noarch::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el8.10.0+23068+28ff2340.src::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el8.10.0+23068+28ff2340.noarch::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el8.10.0+23068+28ff2340.src::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-packaging-bundler-0:2021.06-4.module+el8.10.0+23068+28ff2340.noarch::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.15.0.1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.15.0.1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.15.0.1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.15.0.1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "SQLite: integer overflow in SQLite"
},
{
"cve": "CVE-2025-31498",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"discovery_date": "2025-04-08T14:00:51.425447+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2358271"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in c-ares. This vulnerability allows a remote or local attacker to cause a use-after-free, potentially leading to application-level denial of service or other unexpected behavior via manipulation of DNS responses or network conditions during query processing.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "c-ares: c-ares has a use-after-free in read_answers()",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is rated as moderate severity rather than important because successful exploitation requires a complex and unlikely set of conditions. While it is a use-after-free bug\u2014typically a serious issue\u2014the ability to trigger it remotely is largely theoretical. An attacker would need to control an upstream DNS server and simultaneously flood the target with ICMP UNREACHABLE packets to influence network behavior precisely, a scenario that is difficult to achieve in practice. Additionally, local exploitation depends on manipulating low-level socket behavior to induce send() or write() failures, which also requires elevated system influence or specific environmental conditions.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.src::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debugsource-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debugsource-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debugsource-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debugsource-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-devel-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-devel-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-devel-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-devel-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-docs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.noarch::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el8.10.0+23068+28ff2340.noarch::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el8.10.0+23068+28ff2340.src::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el8.10.0+23068+28ff2340.noarch::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el8.10.0+23068+28ff2340.src::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-packaging-bundler-0:2021.06-4.module+el8.10.0+23068+28ff2340.noarch::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.15.0.1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.15.0.1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.15.0.1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.15.0.1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-31498"
},
{
"category": "external",
"summary": "RHBZ#2358271",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2358271"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-31498",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-31498"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-31498",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-31498"
},
{
"category": "external",
"summary": "https://github.com/c-ares/c-ares/commit/29d38719112639d8c0ba910254a3dd4f482ea2d1",
"url": "https://github.com/c-ares/c-ares/commit/29d38719112639d8c0ba910254a3dd4f482ea2d1"
},
{
"category": "external",
"summary": "https://github.com/c-ares/c-ares/pull/821",
"url": "https://github.com/c-ares/c-ares/pull/821"
},
{
"category": "external",
"summary": "https://github.com/c-ares/c-ares/security/advisories/GHSA-6hxc-62jh-p29v",
"url": "https://github.com/c-ares/c-ares/security/advisories/GHSA-6hxc-62jh-p29v"
}
],
"release_date": "2025-04-08T13:53:11.232000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-05-05T10:39:44+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.src::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debugsource-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debugsource-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debugsource-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debugsource-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-devel-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-devel-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-devel-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-devel-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-docs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.noarch::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el8.10.0+23068+28ff2340.noarch::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el8.10.0+23068+28ff2340.src::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el8.10.0+23068+28ff2340.noarch::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el8.10.0+23068+28ff2340.src::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-packaging-bundler-0:2021.06-4.module+el8.10.0+23068+28ff2340.noarch::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.15.0.1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.15.0.1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.15.0.1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.15.0.1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:4459"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.src::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debugsource-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debugsource-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debugsource-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debugsource-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-devel-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-devel-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-devel-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-devel-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-docs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.noarch::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el8.10.0+23068+28ff2340.noarch::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el8.10.0+23068+28ff2340.src::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el8.10.0+23068+28ff2340.noarch::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el8.10.0+23068+28ff2340.src::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-packaging-bundler-0:2021.06-4.module+el8.10.0+23068+28ff2340.noarch::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.15.0.1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.15.0.1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.15.0.1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.15.0.1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.0,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.src::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debugsource-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debugsource-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debugsource-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debugsource-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-devel-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-devel-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-devel-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-devel-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-docs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.noarch::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.15.0-1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el8.10.0+23068+28ff2340.noarch::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el8.10.0+23068+28ff2340.src::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el8.10.0+23068+28ff2340.noarch::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el8.10.0+23068+28ff2340.src::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-packaging-bundler-0:2021.06-4.module+el8.10.0+23068+28ff2340.noarch::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.15.0.1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.15.0.1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.15.0.1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.15.0.1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el8.10.0+23068+28ff2340.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el8.10.0+23068+28ff2340.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el8.10.0+23068+28ff2340.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el8.10.0+23068+28ff2340.x86_64::nodejs:22"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "c-ares: c-ares has a use-after-free in read_answers()"
}
]
}
RHSA-2025:4461
Vulnerability from csaf_redhat - Published: 2025-05-05 11:28 - Updated: 2026-06-02 15:22Summary
Red Hat Security Advisory: nodejs:20 security update
Severity
Moderate
Notes
Topic: An update for the nodejs:20 module is now available for Red Hat Enterprise Linux 8.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language.
Security Fix(es):
* c-ares: c-ares has a use-after-free in read_answers() (CVE-2025-31498)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in c-ares. This vulnerability allows a remote or local attacker to cause a use-after-free, potentially leading to application-level denial of service or other unexpected behavior via manipulation of DNS responses or network conditions during query processing.
7.0 (High)
Affected products
Fixed
31 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:20.19.1-1.module+el8.10.0+23054+5431297f.aarch64::nodejs:20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:20.19.1-1.module+el8.10.0+23054+5431297f.ppc64le::nodejs:20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:20.19.1-1.module+el8.10.0+23054+5431297f.s390x::nodejs:20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:20.19.1-1.module+el8.10.0+23054+5431297f.src::nodejs:20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:20.19.1-1.module+el8.10.0+23054+5431297f.x86_64::nodejs:20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:nodejs-debuginfo-1:20.19.1-1.module+el8.10.0+23054+5431297f.aarch64::nodejs:20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:nodejs-debuginfo-1:20.19.1-1.module+el8.10.0+23054+5431297f.ppc64le::nodejs:20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:nodejs-debuginfo-1:20.19.1-1.module+el8.10.0+23054+5431297f.s390x::nodejs:20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:nodejs-debuginfo-1:20.19.1-1.module+el8.10.0+23054+5431297f.x86_64::nodejs:20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:nodejs-debugsource-1:20.19.1-1.module+el8.10.0+23054+5431297f.aarch64::nodejs:20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:nodejs-debugsource-1:20.19.1-1.module+el8.10.0+23054+5431297f.ppc64le::nodejs:20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:nodejs-debugsource-1:20.19.1-1.module+el8.10.0+23054+5431297f.s390x::nodejs:20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:nodejs-debugsource-1:20.19.1-1.module+el8.10.0+23054+5431297f.x86_64::nodejs:20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:nodejs-devel-1:20.19.1-1.module+el8.10.0+23054+5431297f.aarch64::nodejs:20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:nodejs-devel-1:20.19.1-1.module+el8.10.0+23054+5431297f.ppc64le::nodejs:20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:nodejs-devel-1:20.19.1-1.module+el8.10.0+23054+5431297f.s390x::nodejs:20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:nodejs-devel-1:20.19.1-1.module+el8.10.0+23054+5431297f.x86_64::nodejs:20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:nodejs-docs-1:20.19.1-1.module+el8.10.0+23054+5431297f.noarch::nodejs:20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:nodejs-full-i18n-1:20.19.1-1.module+el8.10.0+23054+5431297f.aarch64::nodejs:20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:nodejs-full-i18n-1:20.19.1-1.module+el8.10.0+23054+5431297f.ppc64le::nodejs:20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:nodejs-full-i18n-1:20.19.1-1.module+el8.10.0+23054+5431297f.s390x::nodejs:20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:nodejs-full-i18n-1:20.19.1-1.module+el8.10.0+23054+5431297f.x86_64::nodejs:20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el8.10.0+22904+d0fedeff.noarch::nodejs:20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el8.10.0+22904+d0fedeff.src::nodejs:20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el8.10.0+22904+d0fedeff.noarch::nodejs:20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el8.10.0+22904+d0fedeff.src::nodejs:20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:nodejs-packaging-bundler-0:2021.06-4.module+el8.10.0+22904+d0fedeff.noarch::nodejs:20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:npm-1:10.8.2-1.20.19.1.1.module+el8.10.0+23054+5431297f.aarch64::nodejs:20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:npm-1:10.8.2-1.20.19.1.1.module+el8.10.0+23054+5431297f.ppc64le::nodejs:20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:npm-1:10.8.2-1.20.19.1.1.module+el8.10.0+23054+5431297f.s390x::nodejs:20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.10.0.Z.MAIN.EUS:npm-1:10.8.2-1.20.19.1.1.module+el8.10.0+23054+5431297f.x86_64::nodejs:20 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
References
12 references
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for the nodejs:20 module is now available for Red Hat Enterprise Linux 8.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. \n\nSecurity Fix(es):\n\n* c-ares: c-ares has a use-after-free in read_answers() (CVE-2025-31498)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:4461",
"url": "https://access.redhat.com/errata/RHSA-2025:4461"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "2358271",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2358271"
},
{
"category": "external",
"summary": "RHEL-78763",
"url": "https://issues.redhat.com/browse/RHEL-78763"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_4461.json"
}
],
"title": "Red Hat Security Advisory: nodejs:20 security update",
"tracking": {
"current_release_date": "2026-06-02T15:22:23+00:00",
"generator": {
"date": "2026-06-02T15:22:23+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.8.1"
}
},
"id": "RHSA-2025:4461",
"initial_release_date": "2025-05-05T11:28:50+00:00",
"revision_history": [
{
"date": "2025-05-05T11:28:50+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-05-05T11:28:50+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-06-02T15:22:23+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream (v. 8)",
"product": {
"name": "Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:8::appstream"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs-1:20.19.1-1.module+el8.10.0+23054+5431297f.src::nodejs:20",
"product": {
"name": "nodejs-1:20.19.1-1.module+el8.10.0+23054+5431297f.src (nodejs:20)",
"product_id": "nodejs-1:20.19.1-1.module+el8.10.0+23054+5431297f.src::nodejs:20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs@20.19.1-1.module%2Bel8.10.0%2B23054%2B5431297f?arch=src\u0026epoch=1\u0026rpmmod=nodejs:20:8100020250425153222:489197e6"
}
}
},
{
"category": "product_version",
"name": "nodejs-nodemon-0:3.0.1-1.module+el8.10.0+22904+d0fedeff.src::nodejs:20",
"product": {
"name": "nodejs-nodemon-0:3.0.1-1.module+el8.10.0+22904+d0fedeff.src (nodejs:20)",
"product_id": "nodejs-nodemon-0:3.0.1-1.module+el8.10.0+22904+d0fedeff.src::nodejs:20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-nodemon@3.0.1-1.module%2Bel8.10.0%2B22904%2Bd0fedeff?arch=src\u0026rpmmod=nodejs:20:8100020250425153222:489197e6"
}
}
},
{
"category": "product_version",
"name": "nodejs-packaging-0:2021.06-4.module+el8.10.0+22904+d0fedeff.src::nodejs:20",
"product": {
"name": "nodejs-packaging-0:2021.06-4.module+el8.10.0+22904+d0fedeff.src (nodejs:20)",
"product_id": "nodejs-packaging-0:2021.06-4.module+el8.10.0+22904+d0fedeff.src::nodejs:20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-packaging@2021.06-4.module%2Bel8.10.0%2B22904%2Bd0fedeff?arch=src\u0026rpmmod=nodejs:20:8100020250425153222:489197e6"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs-docs-1:20.19.1-1.module+el8.10.0+23054+5431297f.noarch::nodejs:20",
"product": {
"name": "nodejs-docs-1:20.19.1-1.module+el8.10.0+23054+5431297f.noarch (nodejs:20)",
"product_id": "nodejs-docs-1:20.19.1-1.module+el8.10.0+23054+5431297f.noarch::nodejs:20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-docs@20.19.1-1.module%2Bel8.10.0%2B23054%2B5431297f?arch=noarch\u0026epoch=1\u0026rpmmod=nodejs:20:8100020250425153222:489197e6"
}
}
},
{
"category": "product_version",
"name": "nodejs-nodemon-0:3.0.1-1.module+el8.10.0+22904+d0fedeff.noarch::nodejs:20",
"product": {
"name": "nodejs-nodemon-0:3.0.1-1.module+el8.10.0+22904+d0fedeff.noarch (nodejs:20)",
"product_id": "nodejs-nodemon-0:3.0.1-1.module+el8.10.0+22904+d0fedeff.noarch::nodejs:20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-nodemon@3.0.1-1.module%2Bel8.10.0%2B22904%2Bd0fedeff?arch=noarch\u0026rpmmod=nodejs:20:8100020250425153222:489197e6"
}
}
},
{
"category": "product_version",
"name": "nodejs-packaging-0:2021.06-4.module+el8.10.0+22904+d0fedeff.noarch::nodejs:20",
"product": {
"name": "nodejs-packaging-0:2021.06-4.module+el8.10.0+22904+d0fedeff.noarch (nodejs:20)",
"product_id": "nodejs-packaging-0:2021.06-4.module+el8.10.0+22904+d0fedeff.noarch::nodejs:20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-packaging@2021.06-4.module%2Bel8.10.0%2B22904%2Bd0fedeff?arch=noarch\u0026rpmmod=nodejs:20:8100020250425153222:489197e6"
}
}
},
{
"category": "product_version",
"name": "nodejs-packaging-bundler-0:2021.06-4.module+el8.10.0+22904+d0fedeff.noarch::nodejs:20",
"product": {
"name": "nodejs-packaging-bundler-0:2021.06-4.module+el8.10.0+22904+d0fedeff.noarch (nodejs:20)",
"product_id": "nodejs-packaging-bundler-0:2021.06-4.module+el8.10.0+22904+d0fedeff.noarch::nodejs:20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-packaging-bundler@2021.06-4.module%2Bel8.10.0%2B22904%2Bd0fedeff?arch=noarch\u0026rpmmod=nodejs:20:8100020250425153222:489197e6"
}
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs-1:20.19.1-1.module+el8.10.0+23054+5431297f.aarch64::nodejs:20",
"product": {
"name": "nodejs-1:20.19.1-1.module+el8.10.0+23054+5431297f.aarch64 (nodejs:20)",
"product_id": "nodejs-1:20.19.1-1.module+el8.10.0+23054+5431297f.aarch64::nodejs:20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs@20.19.1-1.module%2Bel8.10.0%2B23054%2B5431297f?arch=aarch64\u0026epoch=1\u0026rpmmod=nodejs:20:8100020250425153222:489197e6"
}
}
},
{
"category": "product_version",
"name": "nodejs-debuginfo-1:20.19.1-1.module+el8.10.0+23054+5431297f.aarch64::nodejs:20",
"product": {
"name": "nodejs-debuginfo-1:20.19.1-1.module+el8.10.0+23054+5431297f.aarch64 (nodejs:20)",
"product_id": "nodejs-debuginfo-1:20.19.1-1.module+el8.10.0+23054+5431297f.aarch64::nodejs:20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-debuginfo@20.19.1-1.module%2Bel8.10.0%2B23054%2B5431297f?arch=aarch64\u0026epoch=1\u0026rpmmod=nodejs:20:8100020250425153222:489197e6"
}
}
},
{
"category": "product_version",
"name": "nodejs-debugsource-1:20.19.1-1.module+el8.10.0+23054+5431297f.aarch64::nodejs:20",
"product": {
"name": "nodejs-debugsource-1:20.19.1-1.module+el8.10.0+23054+5431297f.aarch64 (nodejs:20)",
"product_id": "nodejs-debugsource-1:20.19.1-1.module+el8.10.0+23054+5431297f.aarch64::nodejs:20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-debugsource@20.19.1-1.module%2Bel8.10.0%2B23054%2B5431297f?arch=aarch64\u0026epoch=1\u0026rpmmod=nodejs:20:8100020250425153222:489197e6"
}
}
},
{
"category": "product_version",
"name": "nodejs-devel-1:20.19.1-1.module+el8.10.0+23054+5431297f.aarch64::nodejs:20",
"product": {
"name": "nodejs-devel-1:20.19.1-1.module+el8.10.0+23054+5431297f.aarch64 (nodejs:20)",
"product_id": "nodejs-devel-1:20.19.1-1.module+el8.10.0+23054+5431297f.aarch64::nodejs:20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-devel@20.19.1-1.module%2Bel8.10.0%2B23054%2B5431297f?arch=aarch64\u0026epoch=1\u0026rpmmod=nodejs:20:8100020250425153222:489197e6"
}
}
},
{
"category": "product_version",
"name": "nodejs-full-i18n-1:20.19.1-1.module+el8.10.0+23054+5431297f.aarch64::nodejs:20",
"product": {
"name": "nodejs-full-i18n-1:20.19.1-1.module+el8.10.0+23054+5431297f.aarch64 (nodejs:20)",
"product_id": "nodejs-full-i18n-1:20.19.1-1.module+el8.10.0+23054+5431297f.aarch64::nodejs:20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-full-i18n@20.19.1-1.module%2Bel8.10.0%2B23054%2B5431297f?arch=aarch64\u0026epoch=1\u0026rpmmod=nodejs:20:8100020250425153222:489197e6"
}
}
},
{
"category": "product_version",
"name": "npm-1:10.8.2-1.20.19.1.1.module+el8.10.0+23054+5431297f.aarch64::nodejs:20",
"product": {
"name": "npm-1:10.8.2-1.20.19.1.1.module+el8.10.0+23054+5431297f.aarch64 (nodejs:20)",
"product_id": "npm-1:10.8.2-1.20.19.1.1.module+el8.10.0+23054+5431297f.aarch64::nodejs:20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/npm@10.8.2-1.20.19.1.1.module%2Bel8.10.0%2B23054%2B5431297f?arch=aarch64\u0026epoch=1\u0026rpmmod=nodejs:20:8100020250425153222:489197e6"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs-1:20.19.1-1.module+el8.10.0+23054+5431297f.ppc64le::nodejs:20",
"product": {
"name": "nodejs-1:20.19.1-1.module+el8.10.0+23054+5431297f.ppc64le (nodejs:20)",
"product_id": "nodejs-1:20.19.1-1.module+el8.10.0+23054+5431297f.ppc64le::nodejs:20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs@20.19.1-1.module%2Bel8.10.0%2B23054%2B5431297f?arch=ppc64le\u0026epoch=1\u0026rpmmod=nodejs:20:8100020250425153222:489197e6"
}
}
},
{
"category": "product_version",
"name": "nodejs-debuginfo-1:20.19.1-1.module+el8.10.0+23054+5431297f.ppc64le::nodejs:20",
"product": {
"name": "nodejs-debuginfo-1:20.19.1-1.module+el8.10.0+23054+5431297f.ppc64le (nodejs:20)",
"product_id": "nodejs-debuginfo-1:20.19.1-1.module+el8.10.0+23054+5431297f.ppc64le::nodejs:20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-debuginfo@20.19.1-1.module%2Bel8.10.0%2B23054%2B5431297f?arch=ppc64le\u0026epoch=1\u0026rpmmod=nodejs:20:8100020250425153222:489197e6"
}
}
},
{
"category": "product_version",
"name": "nodejs-debugsource-1:20.19.1-1.module+el8.10.0+23054+5431297f.ppc64le::nodejs:20",
"product": {
"name": "nodejs-debugsource-1:20.19.1-1.module+el8.10.0+23054+5431297f.ppc64le (nodejs:20)",
"product_id": "nodejs-debugsource-1:20.19.1-1.module+el8.10.0+23054+5431297f.ppc64le::nodejs:20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-debugsource@20.19.1-1.module%2Bel8.10.0%2B23054%2B5431297f?arch=ppc64le\u0026epoch=1\u0026rpmmod=nodejs:20:8100020250425153222:489197e6"
}
}
},
{
"category": "product_version",
"name": "nodejs-devel-1:20.19.1-1.module+el8.10.0+23054+5431297f.ppc64le::nodejs:20",
"product": {
"name": "nodejs-devel-1:20.19.1-1.module+el8.10.0+23054+5431297f.ppc64le (nodejs:20)",
"product_id": "nodejs-devel-1:20.19.1-1.module+el8.10.0+23054+5431297f.ppc64le::nodejs:20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-devel@20.19.1-1.module%2Bel8.10.0%2B23054%2B5431297f?arch=ppc64le\u0026epoch=1\u0026rpmmod=nodejs:20:8100020250425153222:489197e6"
}
}
},
{
"category": "product_version",
"name": "nodejs-full-i18n-1:20.19.1-1.module+el8.10.0+23054+5431297f.ppc64le::nodejs:20",
"product": {
"name": "nodejs-full-i18n-1:20.19.1-1.module+el8.10.0+23054+5431297f.ppc64le (nodejs:20)",
"product_id": "nodejs-full-i18n-1:20.19.1-1.module+el8.10.0+23054+5431297f.ppc64le::nodejs:20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-full-i18n@20.19.1-1.module%2Bel8.10.0%2B23054%2B5431297f?arch=ppc64le\u0026epoch=1\u0026rpmmod=nodejs:20:8100020250425153222:489197e6"
}
}
},
{
"category": "product_version",
"name": "npm-1:10.8.2-1.20.19.1.1.module+el8.10.0+23054+5431297f.ppc64le::nodejs:20",
"product": {
"name": "npm-1:10.8.2-1.20.19.1.1.module+el8.10.0+23054+5431297f.ppc64le (nodejs:20)",
"product_id": "npm-1:10.8.2-1.20.19.1.1.module+el8.10.0+23054+5431297f.ppc64le::nodejs:20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/npm@10.8.2-1.20.19.1.1.module%2Bel8.10.0%2B23054%2B5431297f?arch=ppc64le\u0026epoch=1\u0026rpmmod=nodejs:20:8100020250425153222:489197e6"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs-1:20.19.1-1.module+el8.10.0+23054+5431297f.s390x::nodejs:20",
"product": {
"name": "nodejs-1:20.19.1-1.module+el8.10.0+23054+5431297f.s390x (nodejs:20)",
"product_id": "nodejs-1:20.19.1-1.module+el8.10.0+23054+5431297f.s390x::nodejs:20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs@20.19.1-1.module%2Bel8.10.0%2B23054%2B5431297f?arch=s390x\u0026epoch=1\u0026rpmmod=nodejs:20:8100020250425153222:489197e6"
}
}
},
{
"category": "product_version",
"name": "nodejs-debuginfo-1:20.19.1-1.module+el8.10.0+23054+5431297f.s390x::nodejs:20",
"product": {
"name": "nodejs-debuginfo-1:20.19.1-1.module+el8.10.0+23054+5431297f.s390x (nodejs:20)",
"product_id": "nodejs-debuginfo-1:20.19.1-1.module+el8.10.0+23054+5431297f.s390x::nodejs:20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-debuginfo@20.19.1-1.module%2Bel8.10.0%2B23054%2B5431297f?arch=s390x\u0026epoch=1\u0026rpmmod=nodejs:20:8100020250425153222:489197e6"
}
}
},
{
"category": "product_version",
"name": "nodejs-debugsource-1:20.19.1-1.module+el8.10.0+23054+5431297f.s390x::nodejs:20",
"product": {
"name": "nodejs-debugsource-1:20.19.1-1.module+el8.10.0+23054+5431297f.s390x (nodejs:20)",
"product_id": "nodejs-debugsource-1:20.19.1-1.module+el8.10.0+23054+5431297f.s390x::nodejs:20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-debugsource@20.19.1-1.module%2Bel8.10.0%2B23054%2B5431297f?arch=s390x\u0026epoch=1\u0026rpmmod=nodejs:20:8100020250425153222:489197e6"
}
}
},
{
"category": "product_version",
"name": "nodejs-devel-1:20.19.1-1.module+el8.10.0+23054+5431297f.s390x::nodejs:20",
"product": {
"name": "nodejs-devel-1:20.19.1-1.module+el8.10.0+23054+5431297f.s390x (nodejs:20)",
"product_id": "nodejs-devel-1:20.19.1-1.module+el8.10.0+23054+5431297f.s390x::nodejs:20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-devel@20.19.1-1.module%2Bel8.10.0%2B23054%2B5431297f?arch=s390x\u0026epoch=1\u0026rpmmod=nodejs:20:8100020250425153222:489197e6"
}
}
},
{
"category": "product_version",
"name": "nodejs-full-i18n-1:20.19.1-1.module+el8.10.0+23054+5431297f.s390x::nodejs:20",
"product": {
"name": "nodejs-full-i18n-1:20.19.1-1.module+el8.10.0+23054+5431297f.s390x (nodejs:20)",
"product_id": "nodejs-full-i18n-1:20.19.1-1.module+el8.10.0+23054+5431297f.s390x::nodejs:20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-full-i18n@20.19.1-1.module%2Bel8.10.0%2B23054%2B5431297f?arch=s390x\u0026epoch=1\u0026rpmmod=nodejs:20:8100020250425153222:489197e6"
}
}
},
{
"category": "product_version",
"name": "npm-1:10.8.2-1.20.19.1.1.module+el8.10.0+23054+5431297f.s390x::nodejs:20",
"product": {
"name": "npm-1:10.8.2-1.20.19.1.1.module+el8.10.0+23054+5431297f.s390x (nodejs:20)",
"product_id": "npm-1:10.8.2-1.20.19.1.1.module+el8.10.0+23054+5431297f.s390x::nodejs:20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/npm@10.8.2-1.20.19.1.1.module%2Bel8.10.0%2B23054%2B5431297f?arch=s390x\u0026epoch=1\u0026rpmmod=nodejs:20:8100020250425153222:489197e6"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs-1:20.19.1-1.module+el8.10.0+23054+5431297f.x86_64::nodejs:20",
"product": {
"name": "nodejs-1:20.19.1-1.module+el8.10.0+23054+5431297f.x86_64 (nodejs:20)",
"product_id": "nodejs-1:20.19.1-1.module+el8.10.0+23054+5431297f.x86_64::nodejs:20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs@20.19.1-1.module%2Bel8.10.0%2B23054%2B5431297f?arch=x86_64\u0026epoch=1\u0026rpmmod=nodejs:20:8100020250425153222:489197e6"
}
}
},
{
"category": "product_version",
"name": "nodejs-debuginfo-1:20.19.1-1.module+el8.10.0+23054+5431297f.x86_64::nodejs:20",
"product": {
"name": "nodejs-debuginfo-1:20.19.1-1.module+el8.10.0+23054+5431297f.x86_64 (nodejs:20)",
"product_id": "nodejs-debuginfo-1:20.19.1-1.module+el8.10.0+23054+5431297f.x86_64::nodejs:20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-debuginfo@20.19.1-1.module%2Bel8.10.0%2B23054%2B5431297f?arch=x86_64\u0026epoch=1\u0026rpmmod=nodejs:20:8100020250425153222:489197e6"
}
}
},
{
"category": "product_version",
"name": "nodejs-debugsource-1:20.19.1-1.module+el8.10.0+23054+5431297f.x86_64::nodejs:20",
"product": {
"name": "nodejs-debugsource-1:20.19.1-1.module+el8.10.0+23054+5431297f.x86_64 (nodejs:20)",
"product_id": "nodejs-debugsource-1:20.19.1-1.module+el8.10.0+23054+5431297f.x86_64::nodejs:20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-debugsource@20.19.1-1.module%2Bel8.10.0%2B23054%2B5431297f?arch=x86_64\u0026epoch=1\u0026rpmmod=nodejs:20:8100020250425153222:489197e6"
}
}
},
{
"category": "product_version",
"name": "nodejs-devel-1:20.19.1-1.module+el8.10.0+23054+5431297f.x86_64::nodejs:20",
"product": {
"name": "nodejs-devel-1:20.19.1-1.module+el8.10.0+23054+5431297f.x86_64 (nodejs:20)",
"product_id": "nodejs-devel-1:20.19.1-1.module+el8.10.0+23054+5431297f.x86_64::nodejs:20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-devel@20.19.1-1.module%2Bel8.10.0%2B23054%2B5431297f?arch=x86_64\u0026epoch=1\u0026rpmmod=nodejs:20:8100020250425153222:489197e6"
}
}
},
{
"category": "product_version",
"name": "nodejs-full-i18n-1:20.19.1-1.module+el8.10.0+23054+5431297f.x86_64::nodejs:20",
"product": {
"name": "nodejs-full-i18n-1:20.19.1-1.module+el8.10.0+23054+5431297f.x86_64 (nodejs:20)",
"product_id": "nodejs-full-i18n-1:20.19.1-1.module+el8.10.0+23054+5431297f.x86_64::nodejs:20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-full-i18n@20.19.1-1.module%2Bel8.10.0%2B23054%2B5431297f?arch=x86_64\u0026epoch=1\u0026rpmmod=nodejs:20:8100020250425153222:489197e6"
}
}
},
{
"category": "product_version",
"name": "npm-1:10.8.2-1.20.19.1.1.module+el8.10.0+23054+5431297f.x86_64::nodejs:20",
"product": {
"name": "npm-1:10.8.2-1.20.19.1.1.module+el8.10.0+23054+5431297f.x86_64 (nodejs:20)",
"product_id": "npm-1:10.8.2-1.20.19.1.1.module+el8.10.0+23054+5431297f.x86_64::nodejs:20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/npm@10.8.2-1.20.19.1.1.module%2Bel8.10.0%2B23054%2B5431297f?arch=x86_64\u0026epoch=1\u0026rpmmod=nodejs:20:8100020250425153222:489197e6"
}
}
}
],
"category": "architecture",
"name": "x86_64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-1:20.19.1-1.module+el8.10.0+23054+5431297f.aarch64 (nodejs:20) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:20.19.1-1.module+el8.10.0+23054+5431297f.aarch64::nodejs:20"
},
"product_reference": "nodejs-1:20.19.1-1.module+el8.10.0+23054+5431297f.aarch64::nodejs:20",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-1:20.19.1-1.module+el8.10.0+23054+5431297f.ppc64le (nodejs:20) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:20.19.1-1.module+el8.10.0+23054+5431297f.ppc64le::nodejs:20"
},
"product_reference": "nodejs-1:20.19.1-1.module+el8.10.0+23054+5431297f.ppc64le::nodejs:20",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-1:20.19.1-1.module+el8.10.0+23054+5431297f.s390x (nodejs:20) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:20.19.1-1.module+el8.10.0+23054+5431297f.s390x::nodejs:20"
},
"product_reference": "nodejs-1:20.19.1-1.module+el8.10.0+23054+5431297f.s390x::nodejs:20",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-1:20.19.1-1.module+el8.10.0+23054+5431297f.src (nodejs:20) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:20.19.1-1.module+el8.10.0+23054+5431297f.src::nodejs:20"
},
"product_reference": "nodejs-1:20.19.1-1.module+el8.10.0+23054+5431297f.src::nodejs:20",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-1:20.19.1-1.module+el8.10.0+23054+5431297f.x86_64 (nodejs:20) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:20.19.1-1.module+el8.10.0+23054+5431297f.x86_64::nodejs:20"
},
"product_reference": "nodejs-1:20.19.1-1.module+el8.10.0+23054+5431297f.x86_64::nodejs:20",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-debuginfo-1:20.19.1-1.module+el8.10.0+23054+5431297f.aarch64 (nodejs:20) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs-debuginfo-1:20.19.1-1.module+el8.10.0+23054+5431297f.aarch64::nodejs:20"
},
"product_reference": "nodejs-debuginfo-1:20.19.1-1.module+el8.10.0+23054+5431297f.aarch64::nodejs:20",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-debuginfo-1:20.19.1-1.module+el8.10.0+23054+5431297f.ppc64le (nodejs:20) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs-debuginfo-1:20.19.1-1.module+el8.10.0+23054+5431297f.ppc64le::nodejs:20"
},
"product_reference": "nodejs-debuginfo-1:20.19.1-1.module+el8.10.0+23054+5431297f.ppc64le::nodejs:20",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-debuginfo-1:20.19.1-1.module+el8.10.0+23054+5431297f.s390x (nodejs:20) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs-debuginfo-1:20.19.1-1.module+el8.10.0+23054+5431297f.s390x::nodejs:20"
},
"product_reference": "nodejs-debuginfo-1:20.19.1-1.module+el8.10.0+23054+5431297f.s390x::nodejs:20",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-debuginfo-1:20.19.1-1.module+el8.10.0+23054+5431297f.x86_64 (nodejs:20) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs-debuginfo-1:20.19.1-1.module+el8.10.0+23054+5431297f.x86_64::nodejs:20"
},
"product_reference": "nodejs-debuginfo-1:20.19.1-1.module+el8.10.0+23054+5431297f.x86_64::nodejs:20",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-debugsource-1:20.19.1-1.module+el8.10.0+23054+5431297f.aarch64 (nodejs:20) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs-debugsource-1:20.19.1-1.module+el8.10.0+23054+5431297f.aarch64::nodejs:20"
},
"product_reference": "nodejs-debugsource-1:20.19.1-1.module+el8.10.0+23054+5431297f.aarch64::nodejs:20",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-debugsource-1:20.19.1-1.module+el8.10.0+23054+5431297f.ppc64le (nodejs:20) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs-debugsource-1:20.19.1-1.module+el8.10.0+23054+5431297f.ppc64le::nodejs:20"
},
"product_reference": "nodejs-debugsource-1:20.19.1-1.module+el8.10.0+23054+5431297f.ppc64le::nodejs:20",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-debugsource-1:20.19.1-1.module+el8.10.0+23054+5431297f.s390x (nodejs:20) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs-debugsource-1:20.19.1-1.module+el8.10.0+23054+5431297f.s390x::nodejs:20"
},
"product_reference": "nodejs-debugsource-1:20.19.1-1.module+el8.10.0+23054+5431297f.s390x::nodejs:20",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-debugsource-1:20.19.1-1.module+el8.10.0+23054+5431297f.x86_64 (nodejs:20) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs-debugsource-1:20.19.1-1.module+el8.10.0+23054+5431297f.x86_64::nodejs:20"
},
"product_reference": "nodejs-debugsource-1:20.19.1-1.module+el8.10.0+23054+5431297f.x86_64::nodejs:20",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-devel-1:20.19.1-1.module+el8.10.0+23054+5431297f.aarch64 (nodejs:20) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs-devel-1:20.19.1-1.module+el8.10.0+23054+5431297f.aarch64::nodejs:20"
},
"product_reference": "nodejs-devel-1:20.19.1-1.module+el8.10.0+23054+5431297f.aarch64::nodejs:20",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-devel-1:20.19.1-1.module+el8.10.0+23054+5431297f.ppc64le (nodejs:20) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs-devel-1:20.19.1-1.module+el8.10.0+23054+5431297f.ppc64le::nodejs:20"
},
"product_reference": "nodejs-devel-1:20.19.1-1.module+el8.10.0+23054+5431297f.ppc64le::nodejs:20",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-devel-1:20.19.1-1.module+el8.10.0+23054+5431297f.s390x (nodejs:20) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs-devel-1:20.19.1-1.module+el8.10.0+23054+5431297f.s390x::nodejs:20"
},
"product_reference": "nodejs-devel-1:20.19.1-1.module+el8.10.0+23054+5431297f.s390x::nodejs:20",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-devel-1:20.19.1-1.module+el8.10.0+23054+5431297f.x86_64 (nodejs:20) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs-devel-1:20.19.1-1.module+el8.10.0+23054+5431297f.x86_64::nodejs:20"
},
"product_reference": "nodejs-devel-1:20.19.1-1.module+el8.10.0+23054+5431297f.x86_64::nodejs:20",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-docs-1:20.19.1-1.module+el8.10.0+23054+5431297f.noarch (nodejs:20) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs-docs-1:20.19.1-1.module+el8.10.0+23054+5431297f.noarch::nodejs:20"
},
"product_reference": "nodejs-docs-1:20.19.1-1.module+el8.10.0+23054+5431297f.noarch::nodejs:20",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-full-i18n-1:20.19.1-1.module+el8.10.0+23054+5431297f.aarch64 (nodejs:20) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs-full-i18n-1:20.19.1-1.module+el8.10.0+23054+5431297f.aarch64::nodejs:20"
},
"product_reference": "nodejs-full-i18n-1:20.19.1-1.module+el8.10.0+23054+5431297f.aarch64::nodejs:20",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-full-i18n-1:20.19.1-1.module+el8.10.0+23054+5431297f.ppc64le (nodejs:20) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs-full-i18n-1:20.19.1-1.module+el8.10.0+23054+5431297f.ppc64le::nodejs:20"
},
"product_reference": "nodejs-full-i18n-1:20.19.1-1.module+el8.10.0+23054+5431297f.ppc64le::nodejs:20",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-full-i18n-1:20.19.1-1.module+el8.10.0+23054+5431297f.s390x (nodejs:20) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs-full-i18n-1:20.19.1-1.module+el8.10.0+23054+5431297f.s390x::nodejs:20"
},
"product_reference": "nodejs-full-i18n-1:20.19.1-1.module+el8.10.0+23054+5431297f.s390x::nodejs:20",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-full-i18n-1:20.19.1-1.module+el8.10.0+23054+5431297f.x86_64 (nodejs:20) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs-full-i18n-1:20.19.1-1.module+el8.10.0+23054+5431297f.x86_64::nodejs:20"
},
"product_reference": "nodejs-full-i18n-1:20.19.1-1.module+el8.10.0+23054+5431297f.x86_64::nodejs:20",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-nodemon-0:3.0.1-1.module+el8.10.0+22904+d0fedeff.noarch (nodejs:20) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el8.10.0+22904+d0fedeff.noarch::nodejs:20"
},
"product_reference": "nodejs-nodemon-0:3.0.1-1.module+el8.10.0+22904+d0fedeff.noarch::nodejs:20",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-nodemon-0:3.0.1-1.module+el8.10.0+22904+d0fedeff.src (nodejs:20) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el8.10.0+22904+d0fedeff.src::nodejs:20"
},
"product_reference": "nodejs-nodemon-0:3.0.1-1.module+el8.10.0+22904+d0fedeff.src::nodejs:20",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-packaging-0:2021.06-4.module+el8.10.0+22904+d0fedeff.noarch (nodejs:20) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el8.10.0+22904+d0fedeff.noarch::nodejs:20"
},
"product_reference": "nodejs-packaging-0:2021.06-4.module+el8.10.0+22904+d0fedeff.noarch::nodejs:20",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-packaging-0:2021.06-4.module+el8.10.0+22904+d0fedeff.src (nodejs:20) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el8.10.0+22904+d0fedeff.src::nodejs:20"
},
"product_reference": "nodejs-packaging-0:2021.06-4.module+el8.10.0+22904+d0fedeff.src::nodejs:20",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-packaging-bundler-0:2021.06-4.module+el8.10.0+22904+d0fedeff.noarch (nodejs:20) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs-packaging-bundler-0:2021.06-4.module+el8.10.0+22904+d0fedeff.noarch::nodejs:20"
},
"product_reference": "nodejs-packaging-bundler-0:2021.06-4.module+el8.10.0+22904+d0fedeff.noarch::nodejs:20",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm-1:10.8.2-1.20.19.1.1.module+el8.10.0+23054+5431297f.aarch64 (nodejs:20) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:npm-1:10.8.2-1.20.19.1.1.module+el8.10.0+23054+5431297f.aarch64::nodejs:20"
},
"product_reference": "npm-1:10.8.2-1.20.19.1.1.module+el8.10.0+23054+5431297f.aarch64::nodejs:20",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm-1:10.8.2-1.20.19.1.1.module+el8.10.0+23054+5431297f.ppc64le (nodejs:20) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:npm-1:10.8.2-1.20.19.1.1.module+el8.10.0+23054+5431297f.ppc64le::nodejs:20"
},
"product_reference": "npm-1:10.8.2-1.20.19.1.1.module+el8.10.0+23054+5431297f.ppc64le::nodejs:20",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm-1:10.8.2-1.20.19.1.1.module+el8.10.0+23054+5431297f.s390x (nodejs:20) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:npm-1:10.8.2-1.20.19.1.1.module+el8.10.0+23054+5431297f.s390x::nodejs:20"
},
"product_reference": "npm-1:10.8.2-1.20.19.1.1.module+el8.10.0+23054+5431297f.s390x::nodejs:20",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm-1:10.8.2-1.20.19.1.1.module+el8.10.0+23054+5431297f.x86_64 (nodejs:20) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:npm-1:10.8.2-1.20.19.1.1.module+el8.10.0+23054+5431297f.x86_64::nodejs:20"
},
"product_reference": "npm-1:10.8.2-1.20.19.1.1.module+el8.10.0+23054+5431297f.x86_64::nodejs:20",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-31498",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"discovery_date": "2025-04-08T14:00:51.425447+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2358271"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in c-ares. This vulnerability allows a remote or local attacker to cause a use-after-free, potentially leading to application-level denial of service or other unexpected behavior via manipulation of DNS responses or network conditions during query processing.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "c-ares: c-ares has a use-after-free in read_answers()",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is rated as moderate severity rather than important because successful exploitation requires a complex and unlikely set of conditions. While it is a use-after-free bug\u2014typically a serious issue\u2014the ability to trigger it remotely is largely theoretical. An attacker would need to control an upstream DNS server and simultaneously flood the target with ICMP UNREACHABLE packets to influence network behavior precisely, a scenario that is difficult to achieve in practice. Additionally, local exploitation depends on manipulating low-level socket behavior to induce send() or write() failures, which also requires elevated system influence or specific environmental conditions.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:20.19.1-1.module+el8.10.0+23054+5431297f.aarch64::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:20.19.1-1.module+el8.10.0+23054+5431297f.ppc64le::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:20.19.1-1.module+el8.10.0+23054+5431297f.s390x::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:20.19.1-1.module+el8.10.0+23054+5431297f.src::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:20.19.1-1.module+el8.10.0+23054+5431297f.x86_64::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debuginfo-1:20.19.1-1.module+el8.10.0+23054+5431297f.aarch64::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debuginfo-1:20.19.1-1.module+el8.10.0+23054+5431297f.ppc64le::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debuginfo-1:20.19.1-1.module+el8.10.0+23054+5431297f.s390x::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debuginfo-1:20.19.1-1.module+el8.10.0+23054+5431297f.x86_64::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debugsource-1:20.19.1-1.module+el8.10.0+23054+5431297f.aarch64::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debugsource-1:20.19.1-1.module+el8.10.0+23054+5431297f.ppc64le::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debugsource-1:20.19.1-1.module+el8.10.0+23054+5431297f.s390x::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debugsource-1:20.19.1-1.module+el8.10.0+23054+5431297f.x86_64::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-devel-1:20.19.1-1.module+el8.10.0+23054+5431297f.aarch64::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-devel-1:20.19.1-1.module+el8.10.0+23054+5431297f.ppc64le::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-devel-1:20.19.1-1.module+el8.10.0+23054+5431297f.s390x::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-devel-1:20.19.1-1.module+el8.10.0+23054+5431297f.x86_64::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-docs-1:20.19.1-1.module+el8.10.0+23054+5431297f.noarch::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-full-i18n-1:20.19.1-1.module+el8.10.0+23054+5431297f.aarch64::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-full-i18n-1:20.19.1-1.module+el8.10.0+23054+5431297f.ppc64le::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-full-i18n-1:20.19.1-1.module+el8.10.0+23054+5431297f.s390x::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-full-i18n-1:20.19.1-1.module+el8.10.0+23054+5431297f.x86_64::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el8.10.0+22904+d0fedeff.noarch::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el8.10.0+22904+d0fedeff.src::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el8.10.0+22904+d0fedeff.noarch::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el8.10.0+22904+d0fedeff.src::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-packaging-bundler-0:2021.06-4.module+el8.10.0+22904+d0fedeff.noarch::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:npm-1:10.8.2-1.20.19.1.1.module+el8.10.0+23054+5431297f.aarch64::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:npm-1:10.8.2-1.20.19.1.1.module+el8.10.0+23054+5431297f.ppc64le::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:npm-1:10.8.2-1.20.19.1.1.module+el8.10.0+23054+5431297f.s390x::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:npm-1:10.8.2-1.20.19.1.1.module+el8.10.0+23054+5431297f.x86_64::nodejs:20"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-31498"
},
{
"category": "external",
"summary": "RHBZ#2358271",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2358271"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-31498",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-31498"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-31498",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-31498"
},
{
"category": "external",
"summary": "https://github.com/c-ares/c-ares/commit/29d38719112639d8c0ba910254a3dd4f482ea2d1",
"url": "https://github.com/c-ares/c-ares/commit/29d38719112639d8c0ba910254a3dd4f482ea2d1"
},
{
"category": "external",
"summary": "https://github.com/c-ares/c-ares/pull/821",
"url": "https://github.com/c-ares/c-ares/pull/821"
},
{
"category": "external",
"summary": "https://github.com/c-ares/c-ares/security/advisories/GHSA-6hxc-62jh-p29v",
"url": "https://github.com/c-ares/c-ares/security/advisories/GHSA-6hxc-62jh-p29v"
}
],
"release_date": "2025-04-08T13:53:11.232000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-05-05T11:28:50+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:20.19.1-1.module+el8.10.0+23054+5431297f.aarch64::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:20.19.1-1.module+el8.10.0+23054+5431297f.ppc64le::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:20.19.1-1.module+el8.10.0+23054+5431297f.s390x::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:20.19.1-1.module+el8.10.0+23054+5431297f.src::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:20.19.1-1.module+el8.10.0+23054+5431297f.x86_64::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debuginfo-1:20.19.1-1.module+el8.10.0+23054+5431297f.aarch64::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debuginfo-1:20.19.1-1.module+el8.10.0+23054+5431297f.ppc64le::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debuginfo-1:20.19.1-1.module+el8.10.0+23054+5431297f.s390x::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debuginfo-1:20.19.1-1.module+el8.10.0+23054+5431297f.x86_64::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debugsource-1:20.19.1-1.module+el8.10.0+23054+5431297f.aarch64::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debugsource-1:20.19.1-1.module+el8.10.0+23054+5431297f.ppc64le::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debugsource-1:20.19.1-1.module+el8.10.0+23054+5431297f.s390x::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debugsource-1:20.19.1-1.module+el8.10.0+23054+5431297f.x86_64::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-devel-1:20.19.1-1.module+el8.10.0+23054+5431297f.aarch64::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-devel-1:20.19.1-1.module+el8.10.0+23054+5431297f.ppc64le::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-devel-1:20.19.1-1.module+el8.10.0+23054+5431297f.s390x::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-devel-1:20.19.1-1.module+el8.10.0+23054+5431297f.x86_64::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-docs-1:20.19.1-1.module+el8.10.0+23054+5431297f.noarch::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-full-i18n-1:20.19.1-1.module+el8.10.0+23054+5431297f.aarch64::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-full-i18n-1:20.19.1-1.module+el8.10.0+23054+5431297f.ppc64le::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-full-i18n-1:20.19.1-1.module+el8.10.0+23054+5431297f.s390x::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-full-i18n-1:20.19.1-1.module+el8.10.0+23054+5431297f.x86_64::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el8.10.0+22904+d0fedeff.noarch::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el8.10.0+22904+d0fedeff.src::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el8.10.0+22904+d0fedeff.noarch::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el8.10.0+22904+d0fedeff.src::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-packaging-bundler-0:2021.06-4.module+el8.10.0+22904+d0fedeff.noarch::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:npm-1:10.8.2-1.20.19.1.1.module+el8.10.0+23054+5431297f.aarch64::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:npm-1:10.8.2-1.20.19.1.1.module+el8.10.0+23054+5431297f.ppc64le::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:npm-1:10.8.2-1.20.19.1.1.module+el8.10.0+23054+5431297f.s390x::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:npm-1:10.8.2-1.20.19.1.1.module+el8.10.0+23054+5431297f.x86_64::nodejs:20"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:4461"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:20.19.1-1.module+el8.10.0+23054+5431297f.aarch64::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:20.19.1-1.module+el8.10.0+23054+5431297f.ppc64le::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:20.19.1-1.module+el8.10.0+23054+5431297f.s390x::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:20.19.1-1.module+el8.10.0+23054+5431297f.src::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:20.19.1-1.module+el8.10.0+23054+5431297f.x86_64::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debuginfo-1:20.19.1-1.module+el8.10.0+23054+5431297f.aarch64::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debuginfo-1:20.19.1-1.module+el8.10.0+23054+5431297f.ppc64le::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debuginfo-1:20.19.1-1.module+el8.10.0+23054+5431297f.s390x::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debuginfo-1:20.19.1-1.module+el8.10.0+23054+5431297f.x86_64::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debugsource-1:20.19.1-1.module+el8.10.0+23054+5431297f.aarch64::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debugsource-1:20.19.1-1.module+el8.10.0+23054+5431297f.ppc64le::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debugsource-1:20.19.1-1.module+el8.10.0+23054+5431297f.s390x::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debugsource-1:20.19.1-1.module+el8.10.0+23054+5431297f.x86_64::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-devel-1:20.19.1-1.module+el8.10.0+23054+5431297f.aarch64::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-devel-1:20.19.1-1.module+el8.10.0+23054+5431297f.ppc64le::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-devel-1:20.19.1-1.module+el8.10.0+23054+5431297f.s390x::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-devel-1:20.19.1-1.module+el8.10.0+23054+5431297f.x86_64::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-docs-1:20.19.1-1.module+el8.10.0+23054+5431297f.noarch::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-full-i18n-1:20.19.1-1.module+el8.10.0+23054+5431297f.aarch64::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-full-i18n-1:20.19.1-1.module+el8.10.0+23054+5431297f.ppc64le::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-full-i18n-1:20.19.1-1.module+el8.10.0+23054+5431297f.s390x::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-full-i18n-1:20.19.1-1.module+el8.10.0+23054+5431297f.x86_64::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el8.10.0+22904+d0fedeff.noarch::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el8.10.0+22904+d0fedeff.src::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el8.10.0+22904+d0fedeff.noarch::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el8.10.0+22904+d0fedeff.src::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-packaging-bundler-0:2021.06-4.module+el8.10.0+22904+d0fedeff.noarch::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:npm-1:10.8.2-1.20.19.1.1.module+el8.10.0+23054+5431297f.aarch64::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:npm-1:10.8.2-1.20.19.1.1.module+el8.10.0+23054+5431297f.ppc64le::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:npm-1:10.8.2-1.20.19.1.1.module+el8.10.0+23054+5431297f.s390x::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:npm-1:10.8.2-1.20.19.1.1.module+el8.10.0+23054+5431297f.x86_64::nodejs:20"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.0,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:20.19.1-1.module+el8.10.0+23054+5431297f.aarch64::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:20.19.1-1.module+el8.10.0+23054+5431297f.ppc64le::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:20.19.1-1.module+el8.10.0+23054+5431297f.s390x::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:20.19.1-1.module+el8.10.0+23054+5431297f.src::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:20.19.1-1.module+el8.10.0+23054+5431297f.x86_64::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debuginfo-1:20.19.1-1.module+el8.10.0+23054+5431297f.aarch64::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debuginfo-1:20.19.1-1.module+el8.10.0+23054+5431297f.ppc64le::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debuginfo-1:20.19.1-1.module+el8.10.0+23054+5431297f.s390x::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debuginfo-1:20.19.1-1.module+el8.10.0+23054+5431297f.x86_64::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debugsource-1:20.19.1-1.module+el8.10.0+23054+5431297f.aarch64::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debugsource-1:20.19.1-1.module+el8.10.0+23054+5431297f.ppc64le::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debugsource-1:20.19.1-1.module+el8.10.0+23054+5431297f.s390x::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debugsource-1:20.19.1-1.module+el8.10.0+23054+5431297f.x86_64::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-devel-1:20.19.1-1.module+el8.10.0+23054+5431297f.aarch64::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-devel-1:20.19.1-1.module+el8.10.0+23054+5431297f.ppc64le::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-devel-1:20.19.1-1.module+el8.10.0+23054+5431297f.s390x::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-devel-1:20.19.1-1.module+el8.10.0+23054+5431297f.x86_64::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-docs-1:20.19.1-1.module+el8.10.0+23054+5431297f.noarch::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-full-i18n-1:20.19.1-1.module+el8.10.0+23054+5431297f.aarch64::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-full-i18n-1:20.19.1-1.module+el8.10.0+23054+5431297f.ppc64le::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-full-i18n-1:20.19.1-1.module+el8.10.0+23054+5431297f.s390x::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-full-i18n-1:20.19.1-1.module+el8.10.0+23054+5431297f.x86_64::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el8.10.0+22904+d0fedeff.noarch::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el8.10.0+22904+d0fedeff.src::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el8.10.0+22904+d0fedeff.noarch::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el8.10.0+22904+d0fedeff.src::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-packaging-bundler-0:2021.06-4.module+el8.10.0+22904+d0fedeff.noarch::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:npm-1:10.8.2-1.20.19.1.1.module+el8.10.0+23054+5431297f.aarch64::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:npm-1:10.8.2-1.20.19.1.1.module+el8.10.0+23054+5431297f.ppc64le::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:npm-1:10.8.2-1.20.19.1.1.module+el8.10.0+23054+5431297f.s390x::nodejs:20",
"AppStream-8.10.0.Z.MAIN.EUS:npm-1:10.8.2-1.20.19.1.1.module+el8.10.0+23054+5431297f.x86_64::nodejs:20"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "c-ares: c-ares has a use-after-free in read_answers()"
}
]
}
RHSA-2025:7426
Vulnerability from csaf_redhat - Published: 2025-05-13 14:02 - Updated: 2026-06-02 15:22Summary
Red Hat Security Advisory: nodejs:20 security update
Severity
Moderate
Notes
Topic: An update for the nodejs:20 module is now available for Red Hat Enterprise Linux 9.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language.
Security Fix(es):
* c-ares: c-ares has a use-after-free in read_answers() (CVE-2025-31498)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in c-ares. This vulnerability allows a remote or local attacker to cause a use-after-free, potentially leading to application-level denial of service or other unexpected behavior via manipulation of DNS responses or network conditions during query processing.
7.0 (High)
Affected products
Fixed
31 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.aarch64::nodejs:20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.ppc64le::nodejs:20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.s390x::nodejs:20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.src::nodejs:20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.x86_64::nodejs:20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:nodejs-debuginfo-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.aarch64::nodejs:20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:nodejs-debuginfo-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.ppc64le::nodejs:20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:nodejs-debuginfo-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.s390x::nodejs:20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:nodejs-debuginfo-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.x86_64::nodejs:20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:nodejs-debugsource-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.aarch64::nodejs:20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:nodejs-debugsource-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.ppc64le::nodejs:20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:nodejs-debugsource-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.s390x::nodejs:20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:nodejs-debugsource-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.x86_64::nodejs:20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:nodejs-devel-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.aarch64::nodejs:20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:nodejs-devel-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.ppc64le::nodejs:20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:nodejs-devel-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.s390x::nodejs:20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:nodejs-devel-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.x86_64::nodejs:20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:nodejs-docs-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.noarch::nodejs:20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:nodejs-full-i18n-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.aarch64::nodejs:20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:nodejs-full-i18n-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.ppc64le::nodejs:20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:nodejs-full-i18n-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.s390x::nodejs:20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:nodejs-full-i18n-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.x86_64::nodejs:20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el9.3.0.z+20478+84a9f781.noarch::nodejs:20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el9.3.0.z+20478+84a9f781.src::nodejs:20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el9.3.0+19518+63aad52d.noarch::nodejs:20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el9.3.0+19518+63aad52d.src::nodejs:20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:nodejs-packaging-bundler-0:2021.06-4.module+el9.3.0+19518+63aad52d.noarch::nodejs:20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:npm-1:10.8.2-1.20.19.1.1.module+el9.6.0+23053+4195b0b2.aarch64::nodejs:20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:npm-1:10.8.2-1.20.19.1.1.module+el9.6.0+23053+4195b0b2.ppc64le::nodejs:20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:npm-1:10.8.2-1.20.19.1.1.module+el9.6.0+23053+4195b0b2.s390x::nodejs:20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:npm-1:10.8.2-1.20.19.1.1.module+el9.6.0+23053+4195b0b2.x86_64::nodejs:20 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
References
11 references
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for the nodejs:20 module is now available for Red Hat Enterprise Linux 9.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. \n\nSecurity Fix(es):\n\n* c-ares: c-ares has a use-after-free in read_answers() (CVE-2025-31498)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:7426",
"url": "https://access.redhat.com/errata/RHSA-2025:7426"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "2358271",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2358271"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_7426.json"
}
],
"title": "Red Hat Security Advisory: nodejs:20 security update",
"tracking": {
"current_release_date": "2026-06-02T15:22:22+00:00",
"generator": {
"date": "2026-06-02T15:22:22+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.8.1"
}
},
"id": "RHSA-2025:7426",
"initial_release_date": "2025-05-13T14:02:17+00:00",
"revision_history": [
{
"date": "2025-05-13T14:02:17+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-05-13T14:02:17+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-06-02T15:22:22+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream (v. 9)",
"product": {
"name": "Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:9::appstream"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.src::nodejs:20",
"product": {
"name": "nodejs-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.src (nodejs:20)",
"product_id": "nodejs-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.src::nodejs:20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs@20.19.1-1.module%2Bel9.6.0%2B23053%2B4195b0b2?arch=src\u0026epoch=1\u0026rpmmod=nodejs:20:9060020250425155626:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-nodemon-0:3.0.1-1.module+el9.3.0.z+20478+84a9f781.src::nodejs:20",
"product": {
"name": "nodejs-nodemon-0:3.0.1-1.module+el9.3.0.z+20478+84a9f781.src (nodejs:20)",
"product_id": "nodejs-nodemon-0:3.0.1-1.module+el9.3.0.z+20478+84a9f781.src::nodejs:20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-nodemon@3.0.1-1.module%2Bel9.3.0.z%2B20478%2B84a9f781?arch=src\u0026rpmmod=nodejs:20:9060020250425155626:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-packaging-0:2021.06-4.module+el9.3.0+19518+63aad52d.src::nodejs:20",
"product": {
"name": "nodejs-packaging-0:2021.06-4.module+el9.3.0+19518+63aad52d.src (nodejs:20)",
"product_id": "nodejs-packaging-0:2021.06-4.module+el9.3.0+19518+63aad52d.src::nodejs:20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-packaging@2021.06-4.module%2Bel9.3.0%2B19518%2B63aad52d?arch=src\u0026rpmmod=nodejs:20:9060020250425155626:rhel9"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs-docs-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.noarch::nodejs:20",
"product": {
"name": "nodejs-docs-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.noarch (nodejs:20)",
"product_id": "nodejs-docs-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.noarch::nodejs:20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-docs@20.19.1-1.module%2Bel9.6.0%2B23053%2B4195b0b2?arch=noarch\u0026epoch=1\u0026rpmmod=nodejs:20:9060020250425155626:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-nodemon-0:3.0.1-1.module+el9.3.0.z+20478+84a9f781.noarch::nodejs:20",
"product": {
"name": "nodejs-nodemon-0:3.0.1-1.module+el9.3.0.z+20478+84a9f781.noarch (nodejs:20)",
"product_id": "nodejs-nodemon-0:3.0.1-1.module+el9.3.0.z+20478+84a9f781.noarch::nodejs:20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-nodemon@3.0.1-1.module%2Bel9.3.0.z%2B20478%2B84a9f781?arch=noarch\u0026rpmmod=nodejs:20:9060020250425155626:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-packaging-0:2021.06-4.module+el9.3.0+19518+63aad52d.noarch::nodejs:20",
"product": {
"name": "nodejs-packaging-0:2021.06-4.module+el9.3.0+19518+63aad52d.noarch (nodejs:20)",
"product_id": "nodejs-packaging-0:2021.06-4.module+el9.3.0+19518+63aad52d.noarch::nodejs:20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-packaging@2021.06-4.module%2Bel9.3.0%2B19518%2B63aad52d?arch=noarch\u0026rpmmod=nodejs:20:9060020250425155626:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-packaging-bundler-0:2021.06-4.module+el9.3.0+19518+63aad52d.noarch::nodejs:20",
"product": {
"name": "nodejs-packaging-bundler-0:2021.06-4.module+el9.3.0+19518+63aad52d.noarch (nodejs:20)",
"product_id": "nodejs-packaging-bundler-0:2021.06-4.module+el9.3.0+19518+63aad52d.noarch::nodejs:20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-packaging-bundler@2021.06-4.module%2Bel9.3.0%2B19518%2B63aad52d?arch=noarch\u0026rpmmod=nodejs:20:9060020250425155626:rhel9"
}
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.aarch64::nodejs:20",
"product": {
"name": "nodejs-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.aarch64 (nodejs:20)",
"product_id": "nodejs-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.aarch64::nodejs:20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs@20.19.1-1.module%2Bel9.6.0%2B23053%2B4195b0b2?arch=aarch64\u0026epoch=1\u0026rpmmod=nodejs:20:9060020250425155626:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-debuginfo-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.aarch64::nodejs:20",
"product": {
"name": "nodejs-debuginfo-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.aarch64 (nodejs:20)",
"product_id": "nodejs-debuginfo-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.aarch64::nodejs:20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-debuginfo@20.19.1-1.module%2Bel9.6.0%2B23053%2B4195b0b2?arch=aarch64\u0026epoch=1\u0026rpmmod=nodejs:20:9060020250425155626:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-debugsource-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.aarch64::nodejs:20",
"product": {
"name": "nodejs-debugsource-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.aarch64 (nodejs:20)",
"product_id": "nodejs-debugsource-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.aarch64::nodejs:20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-debugsource@20.19.1-1.module%2Bel9.6.0%2B23053%2B4195b0b2?arch=aarch64\u0026epoch=1\u0026rpmmod=nodejs:20:9060020250425155626:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-devel-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.aarch64::nodejs:20",
"product": {
"name": "nodejs-devel-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.aarch64 (nodejs:20)",
"product_id": "nodejs-devel-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.aarch64::nodejs:20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-devel@20.19.1-1.module%2Bel9.6.0%2B23053%2B4195b0b2?arch=aarch64\u0026epoch=1\u0026rpmmod=nodejs:20:9060020250425155626:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-full-i18n-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.aarch64::nodejs:20",
"product": {
"name": "nodejs-full-i18n-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.aarch64 (nodejs:20)",
"product_id": "nodejs-full-i18n-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.aarch64::nodejs:20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-full-i18n@20.19.1-1.module%2Bel9.6.0%2B23053%2B4195b0b2?arch=aarch64\u0026epoch=1\u0026rpmmod=nodejs:20:9060020250425155626:rhel9"
}
}
},
{
"category": "product_version",
"name": "npm-1:10.8.2-1.20.19.1.1.module+el9.6.0+23053+4195b0b2.aarch64::nodejs:20",
"product": {
"name": "npm-1:10.8.2-1.20.19.1.1.module+el9.6.0+23053+4195b0b2.aarch64 (nodejs:20)",
"product_id": "npm-1:10.8.2-1.20.19.1.1.module+el9.6.0+23053+4195b0b2.aarch64::nodejs:20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/npm@10.8.2-1.20.19.1.1.module%2Bel9.6.0%2B23053%2B4195b0b2?arch=aarch64\u0026epoch=1\u0026rpmmod=nodejs:20:9060020250425155626:rhel9"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.ppc64le::nodejs:20",
"product": {
"name": "nodejs-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.ppc64le (nodejs:20)",
"product_id": "nodejs-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.ppc64le::nodejs:20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs@20.19.1-1.module%2Bel9.6.0%2B23053%2B4195b0b2?arch=ppc64le\u0026epoch=1\u0026rpmmod=nodejs:20:9060020250425155626:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-debuginfo-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.ppc64le::nodejs:20",
"product": {
"name": "nodejs-debuginfo-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.ppc64le (nodejs:20)",
"product_id": "nodejs-debuginfo-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.ppc64le::nodejs:20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-debuginfo@20.19.1-1.module%2Bel9.6.0%2B23053%2B4195b0b2?arch=ppc64le\u0026epoch=1\u0026rpmmod=nodejs:20:9060020250425155626:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-debugsource-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.ppc64le::nodejs:20",
"product": {
"name": "nodejs-debugsource-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.ppc64le (nodejs:20)",
"product_id": "nodejs-debugsource-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.ppc64le::nodejs:20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-debugsource@20.19.1-1.module%2Bel9.6.0%2B23053%2B4195b0b2?arch=ppc64le\u0026epoch=1\u0026rpmmod=nodejs:20:9060020250425155626:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-devel-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.ppc64le::nodejs:20",
"product": {
"name": "nodejs-devel-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.ppc64le (nodejs:20)",
"product_id": "nodejs-devel-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.ppc64le::nodejs:20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-devel@20.19.1-1.module%2Bel9.6.0%2B23053%2B4195b0b2?arch=ppc64le\u0026epoch=1\u0026rpmmod=nodejs:20:9060020250425155626:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-full-i18n-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.ppc64le::nodejs:20",
"product": {
"name": "nodejs-full-i18n-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.ppc64le (nodejs:20)",
"product_id": "nodejs-full-i18n-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.ppc64le::nodejs:20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-full-i18n@20.19.1-1.module%2Bel9.6.0%2B23053%2B4195b0b2?arch=ppc64le\u0026epoch=1\u0026rpmmod=nodejs:20:9060020250425155626:rhel9"
}
}
},
{
"category": "product_version",
"name": "npm-1:10.8.2-1.20.19.1.1.module+el9.6.0+23053+4195b0b2.ppc64le::nodejs:20",
"product": {
"name": "npm-1:10.8.2-1.20.19.1.1.module+el9.6.0+23053+4195b0b2.ppc64le (nodejs:20)",
"product_id": "npm-1:10.8.2-1.20.19.1.1.module+el9.6.0+23053+4195b0b2.ppc64le::nodejs:20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/npm@10.8.2-1.20.19.1.1.module%2Bel9.6.0%2B23053%2B4195b0b2?arch=ppc64le\u0026epoch=1\u0026rpmmod=nodejs:20:9060020250425155626:rhel9"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.s390x::nodejs:20",
"product": {
"name": "nodejs-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.s390x (nodejs:20)",
"product_id": "nodejs-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.s390x::nodejs:20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs@20.19.1-1.module%2Bel9.6.0%2B23053%2B4195b0b2?arch=s390x\u0026epoch=1\u0026rpmmod=nodejs:20:9060020250425155626:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-debuginfo-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.s390x::nodejs:20",
"product": {
"name": "nodejs-debuginfo-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.s390x (nodejs:20)",
"product_id": "nodejs-debuginfo-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.s390x::nodejs:20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-debuginfo@20.19.1-1.module%2Bel9.6.0%2B23053%2B4195b0b2?arch=s390x\u0026epoch=1\u0026rpmmod=nodejs:20:9060020250425155626:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-debugsource-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.s390x::nodejs:20",
"product": {
"name": "nodejs-debugsource-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.s390x (nodejs:20)",
"product_id": "nodejs-debugsource-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.s390x::nodejs:20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-debugsource@20.19.1-1.module%2Bel9.6.0%2B23053%2B4195b0b2?arch=s390x\u0026epoch=1\u0026rpmmod=nodejs:20:9060020250425155626:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-devel-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.s390x::nodejs:20",
"product": {
"name": "nodejs-devel-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.s390x (nodejs:20)",
"product_id": "nodejs-devel-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.s390x::nodejs:20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-devel@20.19.1-1.module%2Bel9.6.0%2B23053%2B4195b0b2?arch=s390x\u0026epoch=1\u0026rpmmod=nodejs:20:9060020250425155626:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-full-i18n-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.s390x::nodejs:20",
"product": {
"name": "nodejs-full-i18n-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.s390x (nodejs:20)",
"product_id": "nodejs-full-i18n-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.s390x::nodejs:20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-full-i18n@20.19.1-1.module%2Bel9.6.0%2B23053%2B4195b0b2?arch=s390x\u0026epoch=1\u0026rpmmod=nodejs:20:9060020250425155626:rhel9"
}
}
},
{
"category": "product_version",
"name": "npm-1:10.8.2-1.20.19.1.1.module+el9.6.0+23053+4195b0b2.s390x::nodejs:20",
"product": {
"name": "npm-1:10.8.2-1.20.19.1.1.module+el9.6.0+23053+4195b0b2.s390x (nodejs:20)",
"product_id": "npm-1:10.8.2-1.20.19.1.1.module+el9.6.0+23053+4195b0b2.s390x::nodejs:20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/npm@10.8.2-1.20.19.1.1.module%2Bel9.6.0%2B23053%2B4195b0b2?arch=s390x\u0026epoch=1\u0026rpmmod=nodejs:20:9060020250425155626:rhel9"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.x86_64::nodejs:20",
"product": {
"name": "nodejs-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.x86_64 (nodejs:20)",
"product_id": "nodejs-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.x86_64::nodejs:20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs@20.19.1-1.module%2Bel9.6.0%2B23053%2B4195b0b2?arch=x86_64\u0026epoch=1\u0026rpmmod=nodejs:20:9060020250425155626:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-debuginfo-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.x86_64::nodejs:20",
"product": {
"name": "nodejs-debuginfo-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.x86_64 (nodejs:20)",
"product_id": "nodejs-debuginfo-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.x86_64::nodejs:20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-debuginfo@20.19.1-1.module%2Bel9.6.0%2B23053%2B4195b0b2?arch=x86_64\u0026epoch=1\u0026rpmmod=nodejs:20:9060020250425155626:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-debugsource-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.x86_64::nodejs:20",
"product": {
"name": "nodejs-debugsource-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.x86_64 (nodejs:20)",
"product_id": "nodejs-debugsource-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.x86_64::nodejs:20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-debugsource@20.19.1-1.module%2Bel9.6.0%2B23053%2B4195b0b2?arch=x86_64\u0026epoch=1\u0026rpmmod=nodejs:20:9060020250425155626:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-devel-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.x86_64::nodejs:20",
"product": {
"name": "nodejs-devel-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.x86_64 (nodejs:20)",
"product_id": "nodejs-devel-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.x86_64::nodejs:20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-devel@20.19.1-1.module%2Bel9.6.0%2B23053%2B4195b0b2?arch=x86_64\u0026epoch=1\u0026rpmmod=nodejs:20:9060020250425155626:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-full-i18n-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.x86_64::nodejs:20",
"product": {
"name": "nodejs-full-i18n-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.x86_64 (nodejs:20)",
"product_id": "nodejs-full-i18n-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.x86_64::nodejs:20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-full-i18n@20.19.1-1.module%2Bel9.6.0%2B23053%2B4195b0b2?arch=x86_64\u0026epoch=1\u0026rpmmod=nodejs:20:9060020250425155626:rhel9"
}
}
},
{
"category": "product_version",
"name": "npm-1:10.8.2-1.20.19.1.1.module+el9.6.0+23053+4195b0b2.x86_64::nodejs:20",
"product": {
"name": "npm-1:10.8.2-1.20.19.1.1.module+el9.6.0+23053+4195b0b2.x86_64 (nodejs:20)",
"product_id": "npm-1:10.8.2-1.20.19.1.1.module+el9.6.0+23053+4195b0b2.x86_64::nodejs:20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/npm@10.8.2-1.20.19.1.1.module%2Bel9.6.0%2B23053%2B4195b0b2?arch=x86_64\u0026epoch=1\u0026rpmmod=nodejs:20:9060020250425155626:rhel9"
}
}
}
],
"category": "architecture",
"name": "x86_64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.aarch64 (nodejs:20) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.aarch64::nodejs:20"
},
"product_reference": "nodejs-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.aarch64::nodejs:20",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.ppc64le (nodejs:20) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.ppc64le::nodejs:20"
},
"product_reference": "nodejs-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.ppc64le::nodejs:20",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.s390x (nodejs:20) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.s390x::nodejs:20"
},
"product_reference": "nodejs-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.s390x::nodejs:20",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.src (nodejs:20) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.src::nodejs:20"
},
"product_reference": "nodejs-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.src::nodejs:20",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.x86_64 (nodejs:20) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.x86_64::nodejs:20"
},
"product_reference": "nodejs-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.x86_64::nodejs:20",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-debuginfo-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.aarch64 (nodejs:20) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:nodejs-debuginfo-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.aarch64::nodejs:20"
},
"product_reference": "nodejs-debuginfo-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.aarch64::nodejs:20",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-debuginfo-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.ppc64le (nodejs:20) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:nodejs-debuginfo-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.ppc64le::nodejs:20"
},
"product_reference": "nodejs-debuginfo-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.ppc64le::nodejs:20",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-debuginfo-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.s390x (nodejs:20) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:nodejs-debuginfo-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.s390x::nodejs:20"
},
"product_reference": "nodejs-debuginfo-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.s390x::nodejs:20",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-debuginfo-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.x86_64 (nodejs:20) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:nodejs-debuginfo-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.x86_64::nodejs:20"
},
"product_reference": "nodejs-debuginfo-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.x86_64::nodejs:20",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-debugsource-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.aarch64 (nodejs:20) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:nodejs-debugsource-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.aarch64::nodejs:20"
},
"product_reference": "nodejs-debugsource-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.aarch64::nodejs:20",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-debugsource-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.ppc64le (nodejs:20) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:nodejs-debugsource-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.ppc64le::nodejs:20"
},
"product_reference": "nodejs-debugsource-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.ppc64le::nodejs:20",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-debugsource-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.s390x (nodejs:20) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:nodejs-debugsource-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.s390x::nodejs:20"
},
"product_reference": "nodejs-debugsource-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.s390x::nodejs:20",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-debugsource-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.x86_64 (nodejs:20) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:nodejs-debugsource-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.x86_64::nodejs:20"
},
"product_reference": "nodejs-debugsource-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.x86_64::nodejs:20",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-devel-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.aarch64 (nodejs:20) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:nodejs-devel-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.aarch64::nodejs:20"
},
"product_reference": "nodejs-devel-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.aarch64::nodejs:20",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-devel-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.ppc64le (nodejs:20) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:nodejs-devel-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.ppc64le::nodejs:20"
},
"product_reference": "nodejs-devel-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.ppc64le::nodejs:20",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-devel-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.s390x (nodejs:20) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:nodejs-devel-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.s390x::nodejs:20"
},
"product_reference": "nodejs-devel-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.s390x::nodejs:20",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-devel-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.x86_64 (nodejs:20) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:nodejs-devel-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.x86_64::nodejs:20"
},
"product_reference": "nodejs-devel-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.x86_64::nodejs:20",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-docs-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.noarch (nodejs:20) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:nodejs-docs-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.noarch::nodejs:20"
},
"product_reference": "nodejs-docs-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.noarch::nodejs:20",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-full-i18n-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.aarch64 (nodejs:20) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:nodejs-full-i18n-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.aarch64::nodejs:20"
},
"product_reference": "nodejs-full-i18n-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.aarch64::nodejs:20",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-full-i18n-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.ppc64le (nodejs:20) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:nodejs-full-i18n-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.ppc64le::nodejs:20"
},
"product_reference": "nodejs-full-i18n-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.ppc64le::nodejs:20",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-full-i18n-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.s390x (nodejs:20) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:nodejs-full-i18n-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.s390x::nodejs:20"
},
"product_reference": "nodejs-full-i18n-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.s390x::nodejs:20",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-full-i18n-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.x86_64 (nodejs:20) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:nodejs-full-i18n-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.x86_64::nodejs:20"
},
"product_reference": "nodejs-full-i18n-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.x86_64::nodejs:20",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-nodemon-0:3.0.1-1.module+el9.3.0.z+20478+84a9f781.noarch (nodejs:20) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el9.3.0.z+20478+84a9f781.noarch::nodejs:20"
},
"product_reference": "nodejs-nodemon-0:3.0.1-1.module+el9.3.0.z+20478+84a9f781.noarch::nodejs:20",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-nodemon-0:3.0.1-1.module+el9.3.0.z+20478+84a9f781.src (nodejs:20) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el9.3.0.z+20478+84a9f781.src::nodejs:20"
},
"product_reference": "nodejs-nodemon-0:3.0.1-1.module+el9.3.0.z+20478+84a9f781.src::nodejs:20",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-packaging-0:2021.06-4.module+el9.3.0+19518+63aad52d.noarch (nodejs:20) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el9.3.0+19518+63aad52d.noarch::nodejs:20"
},
"product_reference": "nodejs-packaging-0:2021.06-4.module+el9.3.0+19518+63aad52d.noarch::nodejs:20",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-packaging-0:2021.06-4.module+el9.3.0+19518+63aad52d.src (nodejs:20) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el9.3.0+19518+63aad52d.src::nodejs:20"
},
"product_reference": "nodejs-packaging-0:2021.06-4.module+el9.3.0+19518+63aad52d.src::nodejs:20",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-packaging-bundler-0:2021.06-4.module+el9.3.0+19518+63aad52d.noarch (nodejs:20) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:nodejs-packaging-bundler-0:2021.06-4.module+el9.3.0+19518+63aad52d.noarch::nodejs:20"
},
"product_reference": "nodejs-packaging-bundler-0:2021.06-4.module+el9.3.0+19518+63aad52d.noarch::nodejs:20",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm-1:10.8.2-1.20.19.1.1.module+el9.6.0+23053+4195b0b2.aarch64 (nodejs:20) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:npm-1:10.8.2-1.20.19.1.1.module+el9.6.0+23053+4195b0b2.aarch64::nodejs:20"
},
"product_reference": "npm-1:10.8.2-1.20.19.1.1.module+el9.6.0+23053+4195b0b2.aarch64::nodejs:20",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm-1:10.8.2-1.20.19.1.1.module+el9.6.0+23053+4195b0b2.ppc64le (nodejs:20) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:npm-1:10.8.2-1.20.19.1.1.module+el9.6.0+23053+4195b0b2.ppc64le::nodejs:20"
},
"product_reference": "npm-1:10.8.2-1.20.19.1.1.module+el9.6.0+23053+4195b0b2.ppc64le::nodejs:20",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm-1:10.8.2-1.20.19.1.1.module+el9.6.0+23053+4195b0b2.s390x (nodejs:20) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:npm-1:10.8.2-1.20.19.1.1.module+el9.6.0+23053+4195b0b2.s390x::nodejs:20"
},
"product_reference": "npm-1:10.8.2-1.20.19.1.1.module+el9.6.0+23053+4195b0b2.s390x::nodejs:20",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm-1:10.8.2-1.20.19.1.1.module+el9.6.0+23053+4195b0b2.x86_64 (nodejs:20) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:npm-1:10.8.2-1.20.19.1.1.module+el9.6.0+23053+4195b0b2.x86_64::nodejs:20"
},
"product_reference": "npm-1:10.8.2-1.20.19.1.1.module+el9.6.0+23053+4195b0b2.x86_64::nodejs:20",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-31498",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"discovery_date": "2025-04-08T14:00:51.425447+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2358271"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in c-ares. This vulnerability allows a remote or local attacker to cause a use-after-free, potentially leading to application-level denial of service or other unexpected behavior via manipulation of DNS responses or network conditions during query processing.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "c-ares: c-ares has a use-after-free in read_answers()",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is rated as moderate severity rather than important because successful exploitation requires a complex and unlikely set of conditions. While it is a use-after-free bug\u2014typically a serious issue\u2014the ability to trigger it remotely is largely theoretical. An attacker would need to control an upstream DNS server and simultaneously flood the target with ICMP UNREACHABLE packets to influence network behavior precisely, a scenario that is difficult to achieve in practice. Additionally, local exploitation depends on manipulating low-level socket behavior to induce send() or write() failures, which also requires elevated system influence or specific environmental conditions.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.aarch64::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.ppc64le::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.s390x::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.src::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.x86_64::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debuginfo-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.aarch64::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debuginfo-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.ppc64le::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debuginfo-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.s390x::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debuginfo-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.x86_64::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debugsource-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.aarch64::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debugsource-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.ppc64le::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debugsource-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.s390x::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debugsource-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.x86_64::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-devel-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.aarch64::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-devel-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.ppc64le::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-devel-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.s390x::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-devel-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.x86_64::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-docs-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.noarch::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-full-i18n-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.aarch64::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-full-i18n-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.ppc64le::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-full-i18n-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.s390x::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-full-i18n-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.x86_64::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el9.3.0.z+20478+84a9f781.noarch::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el9.3.0.z+20478+84a9f781.src::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el9.3.0+19518+63aad52d.noarch::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el9.3.0+19518+63aad52d.src::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-packaging-bundler-0:2021.06-4.module+el9.3.0+19518+63aad52d.noarch::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:npm-1:10.8.2-1.20.19.1.1.module+el9.6.0+23053+4195b0b2.aarch64::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:npm-1:10.8.2-1.20.19.1.1.module+el9.6.0+23053+4195b0b2.ppc64le::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:npm-1:10.8.2-1.20.19.1.1.module+el9.6.0+23053+4195b0b2.s390x::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:npm-1:10.8.2-1.20.19.1.1.module+el9.6.0+23053+4195b0b2.x86_64::nodejs:20"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-31498"
},
{
"category": "external",
"summary": "RHBZ#2358271",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2358271"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-31498",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-31498"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-31498",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-31498"
},
{
"category": "external",
"summary": "https://github.com/c-ares/c-ares/commit/29d38719112639d8c0ba910254a3dd4f482ea2d1",
"url": "https://github.com/c-ares/c-ares/commit/29d38719112639d8c0ba910254a3dd4f482ea2d1"
},
{
"category": "external",
"summary": "https://github.com/c-ares/c-ares/pull/821",
"url": "https://github.com/c-ares/c-ares/pull/821"
},
{
"category": "external",
"summary": "https://github.com/c-ares/c-ares/security/advisories/GHSA-6hxc-62jh-p29v",
"url": "https://github.com/c-ares/c-ares/security/advisories/GHSA-6hxc-62jh-p29v"
}
],
"release_date": "2025-04-08T13:53:11.232000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-05-13T14:02:17+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.aarch64::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.ppc64le::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.s390x::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.src::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.x86_64::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debuginfo-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.aarch64::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debuginfo-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.ppc64le::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debuginfo-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.s390x::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debuginfo-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.x86_64::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debugsource-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.aarch64::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debugsource-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.ppc64le::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debugsource-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.s390x::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debugsource-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.x86_64::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-devel-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.aarch64::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-devel-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.ppc64le::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-devel-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.s390x::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-devel-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.x86_64::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-docs-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.noarch::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-full-i18n-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.aarch64::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-full-i18n-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.ppc64le::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-full-i18n-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.s390x::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-full-i18n-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.x86_64::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el9.3.0.z+20478+84a9f781.noarch::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el9.3.0.z+20478+84a9f781.src::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el9.3.0+19518+63aad52d.noarch::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el9.3.0+19518+63aad52d.src::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-packaging-bundler-0:2021.06-4.module+el9.3.0+19518+63aad52d.noarch::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:npm-1:10.8.2-1.20.19.1.1.module+el9.6.0+23053+4195b0b2.aarch64::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:npm-1:10.8.2-1.20.19.1.1.module+el9.6.0+23053+4195b0b2.ppc64le::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:npm-1:10.8.2-1.20.19.1.1.module+el9.6.0+23053+4195b0b2.s390x::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:npm-1:10.8.2-1.20.19.1.1.module+el9.6.0+23053+4195b0b2.x86_64::nodejs:20"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:7426"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.aarch64::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.ppc64le::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.s390x::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.src::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.x86_64::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debuginfo-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.aarch64::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debuginfo-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.ppc64le::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debuginfo-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.s390x::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debuginfo-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.x86_64::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debugsource-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.aarch64::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debugsource-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.ppc64le::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debugsource-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.s390x::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debugsource-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.x86_64::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-devel-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.aarch64::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-devel-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.ppc64le::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-devel-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.s390x::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-devel-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.x86_64::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-docs-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.noarch::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-full-i18n-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.aarch64::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-full-i18n-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.ppc64le::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-full-i18n-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.s390x::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-full-i18n-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.x86_64::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el9.3.0.z+20478+84a9f781.noarch::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el9.3.0.z+20478+84a9f781.src::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el9.3.0+19518+63aad52d.noarch::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el9.3.0+19518+63aad52d.src::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-packaging-bundler-0:2021.06-4.module+el9.3.0+19518+63aad52d.noarch::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:npm-1:10.8.2-1.20.19.1.1.module+el9.6.0+23053+4195b0b2.aarch64::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:npm-1:10.8.2-1.20.19.1.1.module+el9.6.0+23053+4195b0b2.ppc64le::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:npm-1:10.8.2-1.20.19.1.1.module+el9.6.0+23053+4195b0b2.s390x::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:npm-1:10.8.2-1.20.19.1.1.module+el9.6.0+23053+4195b0b2.x86_64::nodejs:20"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.0,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.aarch64::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.ppc64le::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.s390x::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.src::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.x86_64::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debuginfo-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.aarch64::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debuginfo-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.ppc64le::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debuginfo-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.s390x::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debuginfo-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.x86_64::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debugsource-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.aarch64::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debugsource-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.ppc64le::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debugsource-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.s390x::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debugsource-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.x86_64::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-devel-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.aarch64::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-devel-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.ppc64le::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-devel-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.s390x::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-devel-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.x86_64::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-docs-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.noarch::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-full-i18n-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.aarch64::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-full-i18n-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.ppc64le::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-full-i18n-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.s390x::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-full-i18n-1:20.19.1-1.module+el9.6.0+23053+4195b0b2.x86_64::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el9.3.0.z+20478+84a9f781.noarch::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el9.3.0.z+20478+84a9f781.src::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el9.3.0+19518+63aad52d.noarch::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el9.3.0+19518+63aad52d.src::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-packaging-bundler-0:2021.06-4.module+el9.3.0+19518+63aad52d.noarch::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:npm-1:10.8.2-1.20.19.1.1.module+el9.6.0+23053+4195b0b2.aarch64::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:npm-1:10.8.2-1.20.19.1.1.module+el9.6.0+23053+4195b0b2.ppc64le::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:npm-1:10.8.2-1.20.19.1.1.module+el9.6.0+23053+4195b0b2.s390x::nodejs:20",
"AppStream-9.6.0.Z.MAIN.EUS:npm-1:10.8.2-1.20.19.1.1.module+el9.6.0+23053+4195b0b2.x86_64::nodejs:20"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "c-ares: c-ares has a use-after-free in read_answers()"
}
]
}
RHSA-2025:7433
Vulnerability from csaf_redhat - Published: 2025-05-13 14:02 - Updated: 2026-06-02 15:22Summary
Red Hat Security Advisory: nodejs:22 security update
Severity
Important
Notes
Topic: An update for the nodejs:22 module is now available for Red Hat Enterprise Linux 9.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language.
Security Fix(es):
* c-ares: c-ares has a use-after-free in read_answers() (CVE-2025-31498)
* SQLite: integer overflow in SQLite (CVE-2025-3277)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in SQLite’s `concat_ws()` function, where an integer overflow can be triggered. The resulting truncated integer can allocate a buffer. When SQLite writes the resulting string to the buffer, it uses the original, untruncated size, and a wild heap buffer overflow size of around 4GB can occur. This issue can result in arbitrary code execution.
7.3 (High)
Affected products
Fixed
43 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.src::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:nodejs-debugsource-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:nodejs-debugsource-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:nodejs-debugsource-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:nodejs-debugsource-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:nodejs-devel-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:nodejs-devel-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:nodejs-devel-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:nodejs-devel-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:nodejs-docs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.noarch::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el9.6.0+23062+9e7801b9.noarch::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el9.6.0+23062+9e7801b9.src::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el9.6.0+23062+9e7801b9.noarch::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el9.6.0+23062+9e7801b9.src::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:nodejs-packaging-bundler-0:2021.06-4.module+el9.6.0+23062+9e7801b9.noarch::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Important
A flaw was found in c-ares. This vulnerability allows a remote or local attacker to cause a use-after-free, potentially leading to application-level denial of service or other unexpected behavior via manipulation of DNS responses or network conditions during query processing.
7.0 (High)
Affected products
Fixed
43 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.src::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:nodejs-debugsource-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:nodejs-debugsource-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:nodejs-debugsource-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:nodejs-debugsource-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:nodejs-devel-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:nodejs-devel-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:nodejs-devel-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:nodejs-devel-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:nodejs-docs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.noarch::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el9.6.0+23062+9e7801b9.noarch::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el9.6.0+23062+9e7801b9.src::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el9.6.0+23062+9e7801b9.noarch::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el9.6.0+23062+9e7801b9.src::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:nodejs-packaging-bundler-0:2021.06-4.module+el9.6.0+23062+9e7801b9.noarch::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
References
17 references
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for the nodejs:22 module is now available for Red Hat Enterprise Linux 9.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. \n\nSecurity Fix(es):\n\n* c-ares: c-ares has a use-after-free in read_answers() (CVE-2025-31498)\n\n* SQLite: integer overflow in SQLite (CVE-2025-3277)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:7433",
"url": "https://access.redhat.com/errata/RHSA-2025:7433"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2358271",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2358271"
},
{
"category": "external",
"summary": "2359553",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2359553"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_7433.json"
}
],
"title": "Red Hat Security Advisory: nodejs:22 security update",
"tracking": {
"current_release_date": "2026-06-02T15:22:30+00:00",
"generator": {
"date": "2026-06-02T15:22:30+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.8.1"
}
},
"id": "RHSA-2025:7433",
"initial_release_date": "2025-05-13T14:02:21+00:00",
"revision_history": [
{
"date": "2025-05-13T14:02:21+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-05-13T14:02:21+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-06-02T15:22:30+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream (v. 9)",
"product": {
"name": "Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:9::appstream"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.src::nodejs:22",
"product": {
"name": "nodejs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.src (nodejs:22)",
"product_id": "nodejs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.src::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs@22.15.0-1.module%2Bel9.6.0%2B23062%2B9e7801b9?arch=src\u0026epoch=1\u0026rpmmod=nodejs:22:9060020250428105352:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-nodemon-0:3.0.1-1.module+el9.6.0+23062+9e7801b9.src::nodejs:22",
"product": {
"name": "nodejs-nodemon-0:3.0.1-1.module+el9.6.0+23062+9e7801b9.src (nodejs:22)",
"product_id": "nodejs-nodemon-0:3.0.1-1.module+el9.6.0+23062+9e7801b9.src::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-nodemon@3.0.1-1.module%2Bel9.6.0%2B23062%2B9e7801b9?arch=src\u0026rpmmod=nodejs:22:9060020250428105352:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-packaging-0:2021.06-4.module+el9.6.0+23062+9e7801b9.src::nodejs:22",
"product": {
"name": "nodejs-packaging-0:2021.06-4.module+el9.6.0+23062+9e7801b9.src (nodejs:22)",
"product_id": "nodejs-packaging-0:2021.06-4.module+el9.6.0+23062+9e7801b9.src::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-packaging@2021.06-4.module%2Bel9.6.0%2B23062%2B9e7801b9?arch=src\u0026rpmmod=nodejs:22:9060020250428105352:rhel9"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs-docs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.noarch::nodejs:22",
"product": {
"name": "nodejs-docs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.noarch (nodejs:22)",
"product_id": "nodejs-docs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.noarch::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-docs@22.15.0-1.module%2Bel9.6.0%2B23062%2B9e7801b9?arch=noarch\u0026epoch=1\u0026rpmmod=nodejs:22:9060020250428105352:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-nodemon-0:3.0.1-1.module+el9.6.0+23062+9e7801b9.noarch::nodejs:22",
"product": {
"name": "nodejs-nodemon-0:3.0.1-1.module+el9.6.0+23062+9e7801b9.noarch (nodejs:22)",
"product_id": "nodejs-nodemon-0:3.0.1-1.module+el9.6.0+23062+9e7801b9.noarch::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-nodemon@3.0.1-1.module%2Bel9.6.0%2B23062%2B9e7801b9?arch=noarch\u0026rpmmod=nodejs:22:9060020250428105352:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-packaging-0:2021.06-4.module+el9.6.0+23062+9e7801b9.noarch::nodejs:22",
"product": {
"name": "nodejs-packaging-0:2021.06-4.module+el9.6.0+23062+9e7801b9.noarch (nodejs:22)",
"product_id": "nodejs-packaging-0:2021.06-4.module+el9.6.0+23062+9e7801b9.noarch::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-packaging@2021.06-4.module%2Bel9.6.0%2B23062%2B9e7801b9?arch=noarch\u0026rpmmod=nodejs:22:9060020250428105352:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-packaging-bundler-0:2021.06-4.module+el9.6.0+23062+9e7801b9.noarch::nodejs:22",
"product": {
"name": "nodejs-packaging-bundler-0:2021.06-4.module+el9.6.0+23062+9e7801b9.noarch (nodejs:22)",
"product_id": "nodejs-packaging-bundler-0:2021.06-4.module+el9.6.0+23062+9e7801b9.noarch::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-packaging-bundler@2021.06-4.module%2Bel9.6.0%2B23062%2B9e7801b9?arch=noarch\u0026rpmmod=nodejs:22:9060020250428105352:rhel9"
}
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22",
"product": {
"name": "nodejs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64 (nodejs:22)",
"product_id": "nodejs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs@22.15.0-1.module%2Bel9.6.0%2B23062%2B9e7801b9?arch=aarch64\u0026epoch=1\u0026rpmmod=nodejs:22:9060020250428105352:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22",
"product": {
"name": "nodejs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64 (nodejs:22)",
"product_id": "nodejs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-debuginfo@22.15.0-1.module%2Bel9.6.0%2B23062%2B9e7801b9?arch=aarch64\u0026epoch=1\u0026rpmmod=nodejs:22:9060020250428105352:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-debugsource-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22",
"product": {
"name": "nodejs-debugsource-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64 (nodejs:22)",
"product_id": "nodejs-debugsource-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-debugsource@22.15.0-1.module%2Bel9.6.0%2B23062%2B9e7801b9?arch=aarch64\u0026epoch=1\u0026rpmmod=nodejs:22:9060020250428105352:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-devel-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22",
"product": {
"name": "nodejs-devel-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64 (nodejs:22)",
"product_id": "nodejs-devel-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-devel@22.15.0-1.module%2Bel9.6.0%2B23062%2B9e7801b9?arch=aarch64\u0026epoch=1\u0026rpmmod=nodejs:22:9060020250428105352:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-full-i18n-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22",
"product": {
"name": "nodejs-full-i18n-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64 (nodejs:22)",
"product_id": "nodejs-full-i18n-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-full-i18n@22.15.0-1.module%2Bel9.6.0%2B23062%2B9e7801b9?arch=aarch64\u0026epoch=1\u0026rpmmod=nodejs:22:9060020250428105352:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-libs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22",
"product": {
"name": "nodejs-libs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64 (nodejs:22)",
"product_id": "nodejs-libs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-libs@22.15.0-1.module%2Bel9.6.0%2B23062%2B9e7801b9?arch=aarch64\u0026epoch=1\u0026rpmmod=nodejs:22:9060020250428105352:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-libs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22",
"product": {
"name": "nodejs-libs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64 (nodejs:22)",
"product_id": "nodejs-libs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-libs-debuginfo@22.15.0-1.module%2Bel9.6.0%2B23062%2B9e7801b9?arch=aarch64\u0026epoch=1\u0026rpmmod=nodejs:22:9060020250428105352:rhel9"
}
}
},
{
"category": "product_version",
"name": "npm-1:10.9.2-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22",
"product": {
"name": "npm-1:10.9.2-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.aarch64 (nodejs:22)",
"product_id": "npm-1:10.9.2-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/npm@10.9.2-1.22.15.0.1.module%2Bel9.6.0%2B23062%2B9e7801b9?arch=aarch64\u0026epoch=1\u0026rpmmod=nodejs:22:9060020250428105352:rhel9"
}
}
},
{
"category": "product_version",
"name": "v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22",
"product": {
"name": "v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.aarch64 (nodejs:22)",
"product_id": "v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/v8-12.4-devel@12.4.254.21-1.22.15.0.1.module%2Bel9.6.0%2B23062%2B9e7801b9?arch=aarch64\u0026epoch=3\u0026rpmmod=nodejs:22:9060020250428105352:rhel9"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22",
"product": {
"name": "nodejs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le (nodejs:22)",
"product_id": "nodejs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs@22.15.0-1.module%2Bel9.6.0%2B23062%2B9e7801b9?arch=ppc64le\u0026epoch=1\u0026rpmmod=nodejs:22:9060020250428105352:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22",
"product": {
"name": "nodejs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le (nodejs:22)",
"product_id": "nodejs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-debuginfo@22.15.0-1.module%2Bel9.6.0%2B23062%2B9e7801b9?arch=ppc64le\u0026epoch=1\u0026rpmmod=nodejs:22:9060020250428105352:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-debugsource-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22",
"product": {
"name": "nodejs-debugsource-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le (nodejs:22)",
"product_id": "nodejs-debugsource-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-debugsource@22.15.0-1.module%2Bel9.6.0%2B23062%2B9e7801b9?arch=ppc64le\u0026epoch=1\u0026rpmmod=nodejs:22:9060020250428105352:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-devel-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22",
"product": {
"name": "nodejs-devel-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le (nodejs:22)",
"product_id": "nodejs-devel-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-devel@22.15.0-1.module%2Bel9.6.0%2B23062%2B9e7801b9?arch=ppc64le\u0026epoch=1\u0026rpmmod=nodejs:22:9060020250428105352:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-full-i18n-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22",
"product": {
"name": "nodejs-full-i18n-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le (nodejs:22)",
"product_id": "nodejs-full-i18n-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-full-i18n@22.15.0-1.module%2Bel9.6.0%2B23062%2B9e7801b9?arch=ppc64le\u0026epoch=1\u0026rpmmod=nodejs:22:9060020250428105352:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-libs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22",
"product": {
"name": "nodejs-libs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le (nodejs:22)",
"product_id": "nodejs-libs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-libs@22.15.0-1.module%2Bel9.6.0%2B23062%2B9e7801b9?arch=ppc64le\u0026epoch=1\u0026rpmmod=nodejs:22:9060020250428105352:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-libs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22",
"product": {
"name": "nodejs-libs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le (nodejs:22)",
"product_id": "nodejs-libs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-libs-debuginfo@22.15.0-1.module%2Bel9.6.0%2B23062%2B9e7801b9?arch=ppc64le\u0026epoch=1\u0026rpmmod=nodejs:22:9060020250428105352:rhel9"
}
}
},
{
"category": "product_version",
"name": "npm-1:10.9.2-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22",
"product": {
"name": "npm-1:10.9.2-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.ppc64le (nodejs:22)",
"product_id": "npm-1:10.9.2-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/npm@10.9.2-1.22.15.0.1.module%2Bel9.6.0%2B23062%2B9e7801b9?arch=ppc64le\u0026epoch=1\u0026rpmmod=nodejs:22:9060020250428105352:rhel9"
}
}
},
{
"category": "product_version",
"name": "v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22",
"product": {
"name": "v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.ppc64le (nodejs:22)",
"product_id": "v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/v8-12.4-devel@12.4.254.21-1.22.15.0.1.module%2Bel9.6.0%2B23062%2B9e7801b9?arch=ppc64le\u0026epoch=3\u0026rpmmod=nodejs:22:9060020250428105352:rhel9"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22",
"product": {
"name": "nodejs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x (nodejs:22)",
"product_id": "nodejs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs@22.15.0-1.module%2Bel9.6.0%2B23062%2B9e7801b9?arch=s390x\u0026epoch=1\u0026rpmmod=nodejs:22:9060020250428105352:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22",
"product": {
"name": "nodejs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x (nodejs:22)",
"product_id": "nodejs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-debuginfo@22.15.0-1.module%2Bel9.6.0%2B23062%2B9e7801b9?arch=s390x\u0026epoch=1\u0026rpmmod=nodejs:22:9060020250428105352:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-debugsource-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22",
"product": {
"name": "nodejs-debugsource-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x (nodejs:22)",
"product_id": "nodejs-debugsource-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-debugsource@22.15.0-1.module%2Bel9.6.0%2B23062%2B9e7801b9?arch=s390x\u0026epoch=1\u0026rpmmod=nodejs:22:9060020250428105352:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-devel-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22",
"product": {
"name": "nodejs-devel-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x (nodejs:22)",
"product_id": "nodejs-devel-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-devel@22.15.0-1.module%2Bel9.6.0%2B23062%2B9e7801b9?arch=s390x\u0026epoch=1\u0026rpmmod=nodejs:22:9060020250428105352:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-full-i18n-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22",
"product": {
"name": "nodejs-full-i18n-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x (nodejs:22)",
"product_id": "nodejs-full-i18n-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-full-i18n@22.15.0-1.module%2Bel9.6.0%2B23062%2B9e7801b9?arch=s390x\u0026epoch=1\u0026rpmmod=nodejs:22:9060020250428105352:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-libs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22",
"product": {
"name": "nodejs-libs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x (nodejs:22)",
"product_id": "nodejs-libs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-libs@22.15.0-1.module%2Bel9.6.0%2B23062%2B9e7801b9?arch=s390x\u0026epoch=1\u0026rpmmod=nodejs:22:9060020250428105352:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-libs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22",
"product": {
"name": "nodejs-libs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x (nodejs:22)",
"product_id": "nodejs-libs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-libs-debuginfo@22.15.0-1.module%2Bel9.6.0%2B23062%2B9e7801b9?arch=s390x\u0026epoch=1\u0026rpmmod=nodejs:22:9060020250428105352:rhel9"
}
}
},
{
"category": "product_version",
"name": "npm-1:10.9.2-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22",
"product": {
"name": "npm-1:10.9.2-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.s390x (nodejs:22)",
"product_id": "npm-1:10.9.2-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/npm@10.9.2-1.22.15.0.1.module%2Bel9.6.0%2B23062%2B9e7801b9?arch=s390x\u0026epoch=1\u0026rpmmod=nodejs:22:9060020250428105352:rhel9"
}
}
},
{
"category": "product_version",
"name": "v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22",
"product": {
"name": "v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.s390x (nodejs:22)",
"product_id": "v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/v8-12.4-devel@12.4.254.21-1.22.15.0.1.module%2Bel9.6.0%2B23062%2B9e7801b9?arch=s390x\u0026epoch=3\u0026rpmmod=nodejs:22:9060020250428105352:rhel9"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22",
"product": {
"name": "nodejs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64 (nodejs:22)",
"product_id": "nodejs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs@22.15.0-1.module%2Bel9.6.0%2B23062%2B9e7801b9?arch=x86_64\u0026epoch=1\u0026rpmmod=nodejs:22:9060020250428105352:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22",
"product": {
"name": "nodejs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64 (nodejs:22)",
"product_id": "nodejs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-debuginfo@22.15.0-1.module%2Bel9.6.0%2B23062%2B9e7801b9?arch=x86_64\u0026epoch=1\u0026rpmmod=nodejs:22:9060020250428105352:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-debugsource-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22",
"product": {
"name": "nodejs-debugsource-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64 (nodejs:22)",
"product_id": "nodejs-debugsource-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-debugsource@22.15.0-1.module%2Bel9.6.0%2B23062%2B9e7801b9?arch=x86_64\u0026epoch=1\u0026rpmmod=nodejs:22:9060020250428105352:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-devel-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22",
"product": {
"name": "nodejs-devel-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64 (nodejs:22)",
"product_id": "nodejs-devel-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-devel@22.15.0-1.module%2Bel9.6.0%2B23062%2B9e7801b9?arch=x86_64\u0026epoch=1\u0026rpmmod=nodejs:22:9060020250428105352:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-full-i18n-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22",
"product": {
"name": "nodejs-full-i18n-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64 (nodejs:22)",
"product_id": "nodejs-full-i18n-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-full-i18n@22.15.0-1.module%2Bel9.6.0%2B23062%2B9e7801b9?arch=x86_64\u0026epoch=1\u0026rpmmod=nodejs:22:9060020250428105352:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-libs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22",
"product": {
"name": "nodejs-libs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64 (nodejs:22)",
"product_id": "nodejs-libs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-libs@22.15.0-1.module%2Bel9.6.0%2B23062%2B9e7801b9?arch=x86_64\u0026epoch=1\u0026rpmmod=nodejs:22:9060020250428105352:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-libs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22",
"product": {
"name": "nodejs-libs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64 (nodejs:22)",
"product_id": "nodejs-libs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-libs-debuginfo@22.15.0-1.module%2Bel9.6.0%2B23062%2B9e7801b9?arch=x86_64\u0026epoch=1\u0026rpmmod=nodejs:22:9060020250428105352:rhel9"
}
}
},
{
"category": "product_version",
"name": "npm-1:10.9.2-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22",
"product": {
"name": "npm-1:10.9.2-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.x86_64 (nodejs:22)",
"product_id": "npm-1:10.9.2-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/npm@10.9.2-1.22.15.0.1.module%2Bel9.6.0%2B23062%2B9e7801b9?arch=x86_64\u0026epoch=1\u0026rpmmod=nodejs:22:9060020250428105352:rhel9"
}
}
},
{
"category": "product_version",
"name": "v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22",
"product": {
"name": "v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.x86_64 (nodejs:22)",
"product_id": "v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/v8-12.4-devel@12.4.254.21-1.22.15.0.1.module%2Bel9.6.0%2B23062%2B9e7801b9?arch=x86_64\u0026epoch=3\u0026rpmmod=nodejs:22:9060020250428105352:rhel9"
}
}
}
],
"category": "architecture",
"name": "x86_64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64 (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22"
},
"product_reference": "nodejs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22"
},
"product_reference": "nodejs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22"
},
"product_reference": "nodejs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.src (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.src::nodejs:22"
},
"product_reference": "nodejs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.src::nodejs:22",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64 (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22"
},
"product_reference": "nodejs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64 (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22"
},
"product_reference": "nodejs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22"
},
"product_reference": "nodejs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22"
},
"product_reference": "nodejs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64 (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22"
},
"product_reference": "nodejs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-debugsource-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64 (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:nodejs-debugsource-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22"
},
"product_reference": "nodejs-debugsource-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-debugsource-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:nodejs-debugsource-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22"
},
"product_reference": "nodejs-debugsource-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-debugsource-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:nodejs-debugsource-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22"
},
"product_reference": "nodejs-debugsource-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-debugsource-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64 (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:nodejs-debugsource-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22"
},
"product_reference": "nodejs-debugsource-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-devel-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64 (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:nodejs-devel-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22"
},
"product_reference": "nodejs-devel-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-devel-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:nodejs-devel-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22"
},
"product_reference": "nodejs-devel-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-devel-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:nodejs-devel-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22"
},
"product_reference": "nodejs-devel-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-devel-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64 (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:nodejs-devel-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22"
},
"product_reference": "nodejs-devel-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-docs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.noarch (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:nodejs-docs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.noarch::nodejs:22"
},
"product_reference": "nodejs-docs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.noarch::nodejs:22",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-full-i18n-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64 (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22"
},
"product_reference": "nodejs-full-i18n-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-full-i18n-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22"
},
"product_reference": "nodejs-full-i18n-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-full-i18n-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22"
},
"product_reference": "nodejs-full-i18n-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-full-i18n-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64 (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22"
},
"product_reference": "nodejs-full-i18n-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-libs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64 (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22"
},
"product_reference": "nodejs-libs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-libs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22"
},
"product_reference": "nodejs-libs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-libs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22"
},
"product_reference": "nodejs-libs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-libs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64 (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22"
},
"product_reference": "nodejs-libs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-libs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64 (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22"
},
"product_reference": "nodejs-libs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-libs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22"
},
"product_reference": "nodejs-libs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-libs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22"
},
"product_reference": "nodejs-libs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-libs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64 (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22"
},
"product_reference": "nodejs-libs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-nodemon-0:3.0.1-1.module+el9.6.0+23062+9e7801b9.noarch (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el9.6.0+23062+9e7801b9.noarch::nodejs:22"
},
"product_reference": "nodejs-nodemon-0:3.0.1-1.module+el9.6.0+23062+9e7801b9.noarch::nodejs:22",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-nodemon-0:3.0.1-1.module+el9.6.0+23062+9e7801b9.src (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el9.6.0+23062+9e7801b9.src::nodejs:22"
},
"product_reference": "nodejs-nodemon-0:3.0.1-1.module+el9.6.0+23062+9e7801b9.src::nodejs:22",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-packaging-0:2021.06-4.module+el9.6.0+23062+9e7801b9.noarch (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el9.6.0+23062+9e7801b9.noarch::nodejs:22"
},
"product_reference": "nodejs-packaging-0:2021.06-4.module+el9.6.0+23062+9e7801b9.noarch::nodejs:22",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-packaging-0:2021.06-4.module+el9.6.0+23062+9e7801b9.src (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el9.6.0+23062+9e7801b9.src::nodejs:22"
},
"product_reference": "nodejs-packaging-0:2021.06-4.module+el9.6.0+23062+9e7801b9.src::nodejs:22",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-packaging-bundler-0:2021.06-4.module+el9.6.0+23062+9e7801b9.noarch (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:nodejs-packaging-bundler-0:2021.06-4.module+el9.6.0+23062+9e7801b9.noarch::nodejs:22"
},
"product_reference": "nodejs-packaging-bundler-0:2021.06-4.module+el9.6.0+23062+9e7801b9.noarch::nodejs:22",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm-1:10.9.2-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.aarch64 (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22"
},
"product_reference": "npm-1:10.9.2-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm-1:10.9.2-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.ppc64le (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22"
},
"product_reference": "npm-1:10.9.2-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm-1:10.9.2-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.s390x (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22"
},
"product_reference": "npm-1:10.9.2-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm-1:10.9.2-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.x86_64 (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22"
},
"product_reference": "npm-1:10.9.2-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.aarch64 (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22"
},
"product_reference": "v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.ppc64le (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22"
},
"product_reference": "v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.s390x (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22"
},
"product_reference": "v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.x86_64 (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22"
},
"product_reference": "v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-3277",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"discovery_date": "2025-04-14T17:00:50.050896+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2359553"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in SQLite\u2019s `concat_ws()` function, where an integer overflow can be triggered. The resulting truncated integer can allocate a buffer. When SQLite writes the resulting string to the buffer, it uses the original, untruncated size, and a wild heap buffer overflow size of around 4GB can occur. This issue can result in arbitrary code execution.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "SQLite: integer overflow in SQLite",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "For Openshift, the bundled sqlite3.c does contain the affected concat_ws function, it is not included in the Rust bindings of the libsqlite3-sys crate, nor are there any indirect ways to call it. Therefore, this is dead code in this context, and Openshift is not affected.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.src::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debugsource-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debugsource-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debugsource-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debugsource-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-devel-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-devel-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-devel-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-devel-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-docs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.noarch::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el9.6.0+23062+9e7801b9.noarch::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el9.6.0+23062+9e7801b9.src::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el9.6.0+23062+9e7801b9.noarch::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el9.6.0+23062+9e7801b9.src::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-packaging-bundler-0:2021.06-4.module+el9.6.0+23062+9e7801b9.noarch::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-3277"
},
{
"category": "external",
"summary": "RHBZ#2359553",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2359553"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-3277",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-3277"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-3277",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-3277"
},
{
"category": "external",
"summary": "https://sqlite.org/src/info/498e3f1cf57f164f",
"url": "https://sqlite.org/src/info/498e3f1cf57f164f"
}
],
"release_date": "2025-04-14T16:50:48.902000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-05-13T14:02:21+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.src::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debugsource-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debugsource-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debugsource-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debugsource-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-devel-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-devel-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-devel-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-devel-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-docs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.noarch::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el9.6.0+23062+9e7801b9.noarch::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el9.6.0+23062+9e7801b9.src::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el9.6.0+23062+9e7801b9.noarch::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el9.6.0+23062+9e7801b9.src::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-packaging-bundler-0:2021.06-4.module+el9.6.0+23062+9e7801b9.noarch::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:7433"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.src::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debugsource-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debugsource-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debugsource-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debugsource-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-devel-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-devel-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-devel-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-devel-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-docs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.noarch::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el9.6.0+23062+9e7801b9.noarch::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el9.6.0+23062+9e7801b9.src::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el9.6.0+23062+9e7801b9.noarch::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el9.6.0+23062+9e7801b9.src::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-packaging-bundler-0:2021.06-4.module+el9.6.0+23062+9e7801b9.noarch::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 7.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.src::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debugsource-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debugsource-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debugsource-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debugsource-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-devel-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-devel-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-devel-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-devel-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-docs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.noarch::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el9.6.0+23062+9e7801b9.noarch::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el9.6.0+23062+9e7801b9.src::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el9.6.0+23062+9e7801b9.noarch::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el9.6.0+23062+9e7801b9.src::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-packaging-bundler-0:2021.06-4.module+el9.6.0+23062+9e7801b9.noarch::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "SQLite: integer overflow in SQLite"
},
{
"cve": "CVE-2025-31498",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"discovery_date": "2025-04-08T14:00:51.425447+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2358271"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in c-ares. This vulnerability allows a remote or local attacker to cause a use-after-free, potentially leading to application-level denial of service or other unexpected behavior via manipulation of DNS responses or network conditions during query processing.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "c-ares: c-ares has a use-after-free in read_answers()",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is rated as moderate severity rather than important because successful exploitation requires a complex and unlikely set of conditions. While it is a use-after-free bug\u2014typically a serious issue\u2014the ability to trigger it remotely is largely theoretical. An attacker would need to control an upstream DNS server and simultaneously flood the target with ICMP UNREACHABLE packets to influence network behavior precisely, a scenario that is difficult to achieve in practice. Additionally, local exploitation depends on manipulating low-level socket behavior to induce send() or write() failures, which also requires elevated system influence or specific environmental conditions.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.src::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debugsource-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debugsource-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debugsource-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debugsource-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-devel-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-devel-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-devel-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-devel-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-docs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.noarch::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el9.6.0+23062+9e7801b9.noarch::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el9.6.0+23062+9e7801b9.src::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el9.6.0+23062+9e7801b9.noarch::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el9.6.0+23062+9e7801b9.src::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-packaging-bundler-0:2021.06-4.module+el9.6.0+23062+9e7801b9.noarch::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-31498"
},
{
"category": "external",
"summary": "RHBZ#2358271",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2358271"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-31498",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-31498"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-31498",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-31498"
},
{
"category": "external",
"summary": "https://github.com/c-ares/c-ares/commit/29d38719112639d8c0ba910254a3dd4f482ea2d1",
"url": "https://github.com/c-ares/c-ares/commit/29d38719112639d8c0ba910254a3dd4f482ea2d1"
},
{
"category": "external",
"summary": "https://github.com/c-ares/c-ares/pull/821",
"url": "https://github.com/c-ares/c-ares/pull/821"
},
{
"category": "external",
"summary": "https://github.com/c-ares/c-ares/security/advisories/GHSA-6hxc-62jh-p29v",
"url": "https://github.com/c-ares/c-ares/security/advisories/GHSA-6hxc-62jh-p29v"
}
],
"release_date": "2025-04-08T13:53:11.232000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-05-13T14:02:21+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.src::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debugsource-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debugsource-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debugsource-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debugsource-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-devel-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-devel-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-devel-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-devel-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-docs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.noarch::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el9.6.0+23062+9e7801b9.noarch::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el9.6.0+23062+9e7801b9.src::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el9.6.0+23062+9e7801b9.noarch::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el9.6.0+23062+9e7801b9.src::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-packaging-bundler-0:2021.06-4.module+el9.6.0+23062+9e7801b9.noarch::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:7433"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.src::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debugsource-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debugsource-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debugsource-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debugsource-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-devel-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-devel-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-devel-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-devel-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-docs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.noarch::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el9.6.0+23062+9e7801b9.noarch::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el9.6.0+23062+9e7801b9.src::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el9.6.0+23062+9e7801b9.noarch::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el9.6.0+23062+9e7801b9.src::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-packaging-bundler-0:2021.06-4.module+el9.6.0+23062+9e7801b9.noarch::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.0,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.src::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debugsource-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debugsource-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debugsource-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debugsource-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-devel-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-devel-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-devel-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-devel-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-docs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.noarch::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.15.0-1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el9.6.0+23062+9e7801b9.noarch::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el9.6.0+23062+9e7801b9.src::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el9.6.0+23062+9e7801b9.noarch::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el9.6.0+23062+9e7801b9.src::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-packaging-bundler-0:2021.06-4.module+el9.6.0+23062+9e7801b9.noarch::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.15.0.1.module+el9.6.0+23062+9e7801b9.x86_64::nodejs:22"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "c-ares: c-ares has a use-after-free in read_answers()"
}
]
}
Loading…
Trend slope:
-
(linear fit over daily sighting counts)
Show additional events:
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…