Search for packages
| purl | pkg:apk/alpine/nodejs@22.22.2-r0?arch=x86&distroversion=v3.21&reponame=main |
| Vulnerability | Summary | Fixed by |
|---|---|---|
| This package is not known to be affected by vulnerabilities. | ||
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-1vp3-fzdr-yqbm | Node.js: Node.js: Information disclosure due to `fs.realpathSync.native()` bypassing filesystem read restrictions |
CVE-2026-21715
|
| VCID-2t7c-dju9-pff6 | Node.js: Node.js: Information disclosure via timing oracle in HMAC verification |
CVE-2026-21713
|
| VCID-43sf-4r41-wugc | nodejs: Nodejs filesystem permissions bypass |
CVE-2025-55132
|
| VCID-96yh-1wub-zucg | Node.js: Node.js: Memory leak and Denial of Service via crafted HTTP/2 WINDOW_UPDATE frames |
CVE-2026-21714
|
| VCID-98fy-tedc-ube7 | nodejs: Nodejs uninitialized memory exposure |
CVE-2025-55131
|
| VCID-bjza-25hu-vkad | nodejs: Nodejs denial of service |
CVE-2026-21637
|
| VCID-dgkh-jdah-wfh9 | nodejs: v8: Node.js: Denial of Service via V8 string hashing mechanism due to predictable hash collisions |
CVE-2026-21717
|
| VCID-dt7u-3usg-9uet | Node.js: Node.js: Denial of Service due to crafted HTTP `__proto__` header |
CVE-2026-21710
|
| VCID-twc8-ewm7-wkb1 | nodejs: Node.js: Permission bypass allows unauthorized modification of file permissions and ownership via incomplete security fix. |
CVE-2026-21716
|
| VCID-u8bq-8jp4-jkem | nodejs: Nodejs denial of service |
CVE-2025-59466
|
| VCID-v7uy-445x-tuan | nodejs: Nodejs denial of service |
CVE-2025-59465
|
| VCID-x1an-pjq4-nbby | nodejs: Nodejs file permissions bypass |
CVE-2025-55130
|
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2026-04-08T06:23:29.692787+00:00 | Alpine Linux Importer | Fixing | VCID-43sf-4r41-wugc | https://secdb.alpinelinux.org/v3.21/main.json | 38.1.0 |
| 2026-04-08T06:23:29.646315+00:00 | Alpine Linux Importer | Fixing | VCID-x1an-pjq4-nbby | https://secdb.alpinelinux.org/v3.21/main.json | 38.1.0 |
| 2026-04-08T06:23:20.662389+00:00 | Alpine Linux Importer | Fixing | VCID-u8bq-8jp4-jkem | https://secdb.alpinelinux.org/v3.21/main.json | 38.1.0 |
| 2026-04-08T06:23:20.408318+00:00 | Alpine Linux Importer | Fixing | VCID-twc8-ewm7-wkb1 | https://secdb.alpinelinux.org/v3.21/main.json | 38.1.0 |
| 2026-04-07T13:57:10.779425+00:00 | Alpine Linux Importer | Fixing | VCID-96yh-1wub-zucg | https://secdb.alpinelinux.org/v3.21/main.json | 38.1.0 |
| 2026-04-07T13:56:55.502814+00:00 | Alpine Linux Importer | Fixing | VCID-98fy-tedc-ube7 | https://secdb.alpinelinux.org/v3.21/main.json | 38.1.0 |
| 2026-04-07T13:56:55.473486+00:00 | Alpine Linux Importer | Fixing | VCID-bjza-25hu-vkad | https://secdb.alpinelinux.org/v3.21/main.json | 38.1.0 |
| 2026-04-06T04:52:05.992992+00:00 | Alpine Linux Importer | Fixing | VCID-1vp3-fzdr-yqbm | https://secdb.alpinelinux.org/v3.21/main.json | 38.1.0 |
| 2026-04-06T04:52:05.941488+00:00 | Alpine Linux Importer | Fixing | VCID-dt7u-3usg-9uet | https://secdb.alpinelinux.org/v3.21/main.json | 38.1.0 |
| 2026-04-06T04:52:05.731070+00:00 | Alpine Linux Importer | Fixing | VCID-dgkh-jdah-wfh9 | https://secdb.alpinelinux.org/v3.21/main.json | 38.1.0 |
| 2026-04-06T04:48:33.358831+00:00 | Alpine Linux Importer | Fixing | VCID-v7uy-445x-tuan | https://secdb.alpinelinux.org/v3.21/main.json | 38.1.0 |
| 2026-04-06T04:45:38.340322+00:00 | Alpine Linux Importer | Fixing | VCID-2t7c-dju9-pff6 | https://secdb.alpinelinux.org/v3.21/main.json | 38.1.0 |