Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1%2Bdeb13u2?distro=trixie
purl pkg:deb/debian/nodejs@20.19.2%2Bdfsg-1%2Bdeb13u2?distro=trixie
Vulnerabilities affecting this package (0)
Vulnerability Summary Fixed by
This package is not known to be affected by vulnerabilities.
Vulnerabilities fixed by this package (7)
Vulnerability Summary Aliases
VCID-1vp3-fzdr-yqbm Node.js: Node.js: Information disclosure due to `fs.realpathSync.native()` bypassing filesystem read restrictions CVE-2026-21715
VCID-2t7c-dju9-pff6 Node.js: Node.js: Information disclosure via timing oracle in HMAC verification CVE-2026-21713
VCID-96yh-1wub-zucg Node.js: Node.js: Memory leak and Denial of Service via crafted HTTP/2 WINDOW_UPDATE frames CVE-2026-21714
VCID-bjza-25hu-vkad nodejs: Nodejs denial of service CVE-2026-21637
VCID-dgkh-jdah-wfh9 nodejs: v8: Node.js: Denial of Service via V8 string hashing mechanism due to predictable hash collisions CVE-2026-21717
VCID-dt7u-3usg-9uet Node.js: Node.js: Denial of Service due to crafted HTTP `__proto__` header CVE-2026-21710
VCID-twc8-ewm7-wkb1 nodejs: Node.js: Permission bypass allows unauthorized modification of file permissions and ownership via incomplete security fix. CVE-2026-21716

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-13T12:49:03.074070+00:00 Debian Importer Fixing VCID-dgkh-jdah-wfh9 https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T12:49:02.995914+00:00 Debian Importer Fixing VCID-twc8-ewm7-wkb1 https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T12:49:02.918918+00:00 Debian Importer Fixing VCID-1vp3-fzdr-yqbm https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T12:49:02.843784+00:00 Debian Importer Fixing VCID-96yh-1wub-zucg https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T12:49:02.755244+00:00 Debian Importer Fixing VCID-2t7c-dju9-pff6 https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T12:49:02.552746+00:00 Debian Importer Fixing VCID-dt7u-3usg-9uet https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T12:49:02.481853+00:00 Debian Importer Fixing VCID-bjza-25hu-vkad https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-03T07:47:26.808587+00:00 Debian Importer Fixing VCID-dgkh-jdah-wfh9 https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:47:26.760090+00:00 Debian Importer Fixing VCID-twc8-ewm7-wkb1 https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:47:26.711412+00:00 Debian Importer Fixing VCID-1vp3-fzdr-yqbm https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:47:26.662813+00:00 Debian Importer Fixing VCID-96yh-1wub-zucg https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:47:26.613491+00:00 Debian Importer Fixing VCID-2t7c-dju9-pff6 https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:47:26.478998+00:00 Debian Importer Fixing VCID-dt7u-3usg-9uet https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:47:26.430486+00:00 Debian Importer Fixing VCID-bjza-25hu-vkad https://security-tracker.debian.org/tracker/data/json 38.1.0