MGASA-2022-0422
Advisory lineage Upstream: 1 Downstream: 0
Upstream
Published: 13 Nov 2022, 02:25
Last modified:16 Apr 2026, 04:22
Vulnerability Summary
Overall Risk (default)
minimal
0/100 CVSS Score
No data
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected
Timeline
13 Nov 2022, 02:25
Published
Vulnerability first disclosed
16 Apr 2026, 04:22
Last Modified
Vulnerability information updated
Description
Updated nodejs packages fix security vulnerability DNS rebinding in --inspect via invalid octal IP address (CVE-2022-43548) In addition, 14.21.0 has provided the following changes: deps update corepack to 0.14.2 (Node.js GitHub Bot) #44775 src add --openssl-shared-config option (Daniel Bevenius) #43124
Affected Systems
- mageia•nodejs
< 14.21.1-1.1.mga8
References (6)
- https://advisories.mageia.org/MGASA-2022-0422.html
- https://bugs.mageia.org/show_bug.cgi?id=31078
- https://github.com/nodejs/node/releases/tag/v14.21.1
- https://github.com/nodejs/node/releases/tag/v14.21.0
- https://nodejs.org/en/blog/vulnerability/november-2022-security-releases/
- https://nodejs.org/en/blog/release/v18.12.1/