Release date:
2026-04-21 14:58:45 UTC
Description:
- CVE-2026-26996: fix ReDoS in bundled minimatch caused by consecutive
non-globstar * characters, by coalescing them during pattern compilation
- CVE-2026-27904: fix ReDoS in bundled minimatch from nested extglobs and
multiple non-adjacent ** wildcards, by limiting globstar recursion
Updated packages:
-
nodejs-16.20.2-8.el9_6.tuxcare.els11.x86_64.rpm
sha:4b2e857835c21f34b05776716079f006ab1aac7cf4a5f31fc3a5eb56a6ab3780
-
nodejs-devel-16.20.2-8.el9_6.tuxcare.els11.x86_64.rpm
sha:88ddd8f298f46bd7f1176226f548f5e6854ee9da3d1ec859723975f1e4c2f05f
-
nodejs-docs-16.20.2-8.el9_6.tuxcare.els11.noarch.rpm
sha:0137036ac548b761cd49f83fc2c77e3a28a3687306721c786303b31f412d907f
-
nodejs-full-i18n-16.20.2-8.el9_6.tuxcare.els11.x86_64.rpm
sha:32556e549568925ae8a70bccd8e3d29317789ed783e7264a1f3ea3ef4cf5368c
-
nodejs-libs-16.20.2-8.el9_6.tuxcare.els11.i686.rpm
sha:f4ccc6ea18309e38a733fe91b57514d756e40189f00abbf0b15ccf0d93b60bdc
-
nodejs-libs-16.20.2-8.el9_6.tuxcare.els11.x86_64.rpm
sha:62d4446e837f84235a90a984ff080e71fcd5ccdfbb74c642b9f9824ce308e31d
-
npm-8.19.4_1.16.20.2-8.el9_6.tuxcare.els11.x86_64.rpm
sha:717ceb60fc5632735c6eab7d88cf27dbbeb9d86c4b8d05e480446bc8e8f6cc2e
-
v8-devel-9.4.146.26_1.16.20.2-8.el9_6.tuxcare.els11.x86_64.rpm
sha:3600be9212237a45e0efd9ac61d3f40b5f30732c1dac8b5cbcc1cea83946a20c
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
