{ "document":{ "aggregate_severity":{ "namespace":"https://nvd.nist.gov/vuln-metrics/cvss", "text":"High" }, "category":"csaf_vex", "csaf_version":"2.0", "distribution":{ "tlp":{ "label":"WHITE", "url":"https:/www.first.org/tlp/" } }, "lang":"en", "notes":[ { "text":"nodejs security update", "category":"general", "title":"Synopsis" }, { "text":"An update for nodejs is now available for openEuler-24.03-LTS", "category":"general", "title":"Summary" }, { "text":"Node.js is a platform built on Chrome's JavaScript runtime for easily building fast, scalable network applications. Node.js uses an event-driven, non-blocking I/O model that makes it lightweight and efficient, perfect for data-intensive real-time applications that run across distributed devices.\n\nSecurity Fix(es):\n\nWith the aid of the diagnostics_channel utility, an event can be hooked into whenever a worker thread is created. This is not limited only to workers but also exposes internal workers, where an instance of them can be fetched, and its constructor can be grabbed and reinstated for malicious usage. \n\nThis vulnerability affects Permission Model users (--permission) on Node.js v20, v22, and v23.(CVE-2025-23083)", "category":"general", "title":"Description" }, { "text":"An update for nodejs is now available for openEuler-24.03-LTS.\n\nopenEuler Security has rated this update as having a security impact of high. A Common Vunlnerability Scoring System(CVSS)base score,which gives a detailed severity rating, is available for each vulnerability from the CVElink(s) in the References section.", "category":"general", "title":"Topic" }, { "text":"High", "category":"general", "title":"Severity" }, { "text":"nodejs", "category":"general", "title":"Affected Component" } ], "publisher":{ "issuing_authority":"openEuler security committee", "name":"openEuler", "namespace":"https://www.openeuler.org", "contact_details":"openeuler-security@openeuler.org", "category":"vendor" }, "references":[ { "summary":"openEuler-SA-2025-1235", "category":"self", "url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2025-1235" }, { "summary":"CVE-2025-23083", "category":"self", "url":"https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2025-23083&packageName=nodejs" }, { "summary":"nvd cve", "category":"external", "url":"https://nvd.nist.gov/vuln/detail/CVE-2025-23083" }, { "summary":"openEuler-SA-2025-1235 vex file", "category":"self", "url":"https://repo.openeuler.org/security/data/csaf/advisories/2025/csaf-openeuler-sa-2025-1235.json" } ], "title":"An update for nodejs is now available for openEuler-24.03-LTS", "tracking":{ "initial_release_date":"2025-03-07T23:30:41+08:00", "revision_history":[ { "date":"2025-03-07T23:30:41+08:00", "summary":"Initial", "number":"1.0.0" } ], "generator":{ "date":"2025-03-07T23:30:41+08:00", "engine":{ "name":"openEuler CSAF Tool V1.0" } }, "current_release_date":"2025-03-07T23:30:41+08:00", "id":"openEuler-SA-2025-1235", "version":"1.0.0", "status":"final" } }, "product_tree":{ "branches":[ { "name":"openEuler", "category":"vendor", "branches":[ { "name":"openEuler", "branches":[ { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:24.03-LTS" }, "product_id":"openEuler-24.03-LTS", "name":"openEuler-24.03-LTS" }, "name":"openEuler-24.03-LTS", "category":"product_version" } ], "category":"product_name" }, { "name":"x86_64", "branches":[ { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:24.03-LTS" }, "product_id":"nodejs-20.18.2-1.oe2403.x86_64.rpm", "name":"nodejs-20.18.2-1.oe2403.x86_64.rpm" }, "name":"nodejs-20.18.2-1.oe2403.x86_64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:24.03-LTS" }, "product_id":"nodejs-debuginfo-20.18.2-1.oe2403.x86_64.rpm", "name":"nodejs-debuginfo-20.18.2-1.oe2403.x86_64.rpm" }, "name":"nodejs-debuginfo-20.18.2-1.oe2403.x86_64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:24.03-LTS" }, "product_id":"nodejs-debugsource-20.18.2-1.oe2403.x86_64.rpm", "name":"nodejs-debugsource-20.18.2-1.oe2403.x86_64.rpm" }, "name":"nodejs-debugsource-20.18.2-1.oe2403.x86_64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:24.03-LTS" }, "product_id":"nodejs-devel-20.18.2-1.oe2403.x86_64.rpm", "name":"nodejs-devel-20.18.2-1.oe2403.x86_64.rpm" }, "name":"nodejs-devel-20.18.2-1.oe2403.x86_64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:24.03-LTS" }, "product_id":"nodejs-full-i18n-20.18.2-1.oe2403.x86_64.rpm", "name":"nodejs-full-i18n-20.18.2-1.oe2403.x86_64.rpm" }, "name":"nodejs-full-i18n-20.18.2-1.oe2403.x86_64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:24.03-LTS" }, "product_id":"nodejs-libs-20.18.2-1.oe2403.x86_64.rpm", "name":"nodejs-libs-20.18.2-1.oe2403.x86_64.rpm" }, "name":"nodejs-libs-20.18.2-1.oe2403.x86_64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:24.03-LTS" }, "product_id":"npm-10.8.2-1.20.18.2.1.oe2403.x86_64.rpm", "name":"npm-10.8.2-1.20.18.2.1.oe2403.x86_64.rpm" }, "name":"npm-10.8.2-1.20.18.2.1.oe2403.x86_64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:24.03-LTS" }, "product_id":"v8-devel-11.3.244.8-1.20.18.2.1.oe2403.x86_64.rpm", "name":"v8-devel-11.3.244.8-1.20.18.2.1.oe2403.x86_64.rpm" }, "name":"v8-devel-11.3.244.8-1.20.18.2.1.oe2403.x86_64.rpm", "category":"product_version" } ], "category":"architecture" }, { "name":"noarch", "branches":[ { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:24.03-LTS" }, "product_id":"nodejs-docs-20.18.2-1.oe2403.noarch.rpm", "name":"nodejs-docs-20.18.2-1.oe2403.noarch.rpm" }, "name":"nodejs-docs-20.18.2-1.oe2403.noarch.rpm", "category":"product_version" } ], "category":"architecture" }, { "name":"aarch64", "branches":[ { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:24.03-LTS" }, "product_id":"nodejs-20.18.2-1.oe2403.aarch64.rpm", "name":"nodejs-20.18.2-1.oe2403.aarch64.rpm" }, "name":"nodejs-20.18.2-1.oe2403.aarch64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:24.03-LTS" }, "product_id":"nodejs-debuginfo-20.18.2-1.oe2403.aarch64.rpm", "name":"nodejs-debuginfo-20.18.2-1.oe2403.aarch64.rpm" }, "name":"nodejs-debuginfo-20.18.2-1.oe2403.aarch64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:24.03-LTS" }, "product_id":"nodejs-debugsource-20.18.2-1.oe2403.aarch64.rpm", "name":"nodejs-debugsource-20.18.2-1.oe2403.aarch64.rpm" }, "name":"nodejs-debugsource-20.18.2-1.oe2403.aarch64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:24.03-LTS" }, "product_id":"nodejs-devel-20.18.2-1.oe2403.aarch64.rpm", "name":"nodejs-devel-20.18.2-1.oe2403.aarch64.rpm" }, "name":"nodejs-devel-20.18.2-1.oe2403.aarch64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:24.03-LTS" }, "product_id":"nodejs-full-i18n-20.18.2-1.oe2403.aarch64.rpm", "name":"nodejs-full-i18n-20.18.2-1.oe2403.aarch64.rpm" }, "name":"nodejs-full-i18n-20.18.2-1.oe2403.aarch64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:24.03-LTS" }, "product_id":"nodejs-libs-20.18.2-1.oe2403.aarch64.rpm", "name":"nodejs-libs-20.18.2-1.oe2403.aarch64.rpm" }, "name":"nodejs-libs-20.18.2-1.oe2403.aarch64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:24.03-LTS" }, "product_id":"npm-10.8.2-1.20.18.2.1.oe2403.aarch64.rpm", "name":"npm-10.8.2-1.20.18.2.1.oe2403.aarch64.rpm" }, "name":"npm-10.8.2-1.20.18.2.1.oe2403.aarch64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:24.03-LTS" }, "product_id":"v8-devel-11.3.244.8-1.20.18.2.1.oe2403.aarch64.rpm", "name":"v8-devel-11.3.244.8-1.20.18.2.1.oe2403.aarch64.rpm" }, "name":"v8-devel-11.3.244.8-1.20.18.2.1.oe2403.aarch64.rpm", "category":"product_version" } ], "category":"architecture" }, { "name":"src", "branches":[ { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:24.03-LTS" }, "product_id":"nodejs-20.18.2-1.oe2403.src.rpm", "name":"nodejs-20.18.2-1.oe2403.src.rpm" }, "name":"nodejs-20.18.2-1.oe2403.src.rpm", "category":"product_version" } ], "category":"architecture" } ] } ], "relationships":[ { "relates_to_product_reference":"openEuler-24.03-LTS", "product_reference":"nodejs-20.18.2-1.oe2403.x86_64.rpm", "full_product_name":{ "product_id":"openEuler-24.03-LTS:nodejs-20.18.2-1.oe2403.x86_64", "name":"nodejs-20.18.2-1.oe2403.x86_64 as a component of openEuler-24.03-LTS" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-24.03-LTS", "product_reference":"nodejs-debuginfo-20.18.2-1.oe2403.x86_64.rpm", "full_product_name":{ "product_id":"openEuler-24.03-LTS:nodejs-debuginfo-20.18.2-1.oe2403.x86_64", "name":"nodejs-debuginfo-20.18.2-1.oe2403.x86_64 as a component of openEuler-24.03-LTS" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-24.03-LTS", "product_reference":"nodejs-debugsource-20.18.2-1.oe2403.x86_64.rpm", "full_product_name":{ "product_id":"openEuler-24.03-LTS:nodejs-debugsource-20.18.2-1.oe2403.x86_64", "name":"nodejs-debugsource-20.18.2-1.oe2403.x86_64 as a component of openEuler-24.03-LTS" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-24.03-LTS", "product_reference":"nodejs-devel-20.18.2-1.oe2403.x86_64.rpm", "full_product_name":{ "product_id":"openEuler-24.03-LTS:nodejs-devel-20.18.2-1.oe2403.x86_64", "name":"nodejs-devel-20.18.2-1.oe2403.x86_64 as a component of openEuler-24.03-LTS" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-24.03-LTS", "product_reference":"nodejs-full-i18n-20.18.2-1.oe2403.x86_64.rpm", "full_product_name":{ "product_id":"openEuler-24.03-LTS:nodejs-full-i18n-20.18.2-1.oe2403.x86_64", "name":"nodejs-full-i18n-20.18.2-1.oe2403.x86_64 as a component of openEuler-24.03-LTS" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-24.03-LTS", "product_reference":"nodejs-libs-20.18.2-1.oe2403.x86_64.rpm", "full_product_name":{ "product_id":"openEuler-24.03-LTS:nodejs-libs-20.18.2-1.oe2403.x86_64", "name":"nodejs-libs-20.18.2-1.oe2403.x86_64 as a component of openEuler-24.03-LTS" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-24.03-LTS", "product_reference":"npm-10.8.2-1.20.18.2.1.oe2403.x86_64.rpm", "full_product_name":{ "product_id":"openEuler-24.03-LTS:npm-10.8.2-1.20.18.2.1.oe2403.x86_64", "name":"npm-10.8.2-1.20.18.2.1.oe2403.x86_64 as a component of openEuler-24.03-LTS" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-24.03-LTS", "product_reference":"v8-devel-11.3.244.8-1.20.18.2.1.oe2403.x86_64.rpm", "full_product_name":{ "product_id":"openEuler-24.03-LTS:v8-devel-11.3.244.8-1.20.18.2.1.oe2403.x86_64", "name":"v8-devel-11.3.244.8-1.20.18.2.1.oe2403.x86_64 as a component of openEuler-24.03-LTS" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-24.03-LTS", "product_reference":"nodejs-docs-20.18.2-1.oe2403.noarch.rpm", "full_product_name":{ "product_id":"openEuler-24.03-LTS:nodejs-docs-20.18.2-1.oe2403.noarch", "name":"nodejs-docs-20.18.2-1.oe2403.noarch as a component of openEuler-24.03-LTS" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-24.03-LTS", "product_reference":"nodejs-20.18.2-1.oe2403.aarch64.rpm", "full_product_name":{ "product_id":"openEuler-24.03-LTS:nodejs-20.18.2-1.oe2403.aarch64", "name":"nodejs-20.18.2-1.oe2403.aarch64 as a component of openEuler-24.03-LTS" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-24.03-LTS", "product_reference":"nodejs-debuginfo-20.18.2-1.oe2403.aarch64.rpm", "full_product_name":{ "product_id":"openEuler-24.03-LTS:nodejs-debuginfo-20.18.2-1.oe2403.aarch64", "name":"nodejs-debuginfo-20.18.2-1.oe2403.aarch64 as a component of openEuler-24.03-LTS" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-24.03-LTS", "product_reference":"nodejs-debugsource-20.18.2-1.oe2403.aarch64.rpm", "full_product_name":{ "product_id":"openEuler-24.03-LTS:nodejs-debugsource-20.18.2-1.oe2403.aarch64", "name":"nodejs-debugsource-20.18.2-1.oe2403.aarch64 as a component of openEuler-24.03-LTS" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-24.03-LTS", "product_reference":"nodejs-devel-20.18.2-1.oe2403.aarch64.rpm", "full_product_name":{ "product_id":"openEuler-24.03-LTS:nodejs-devel-20.18.2-1.oe2403.aarch64", "name":"nodejs-devel-20.18.2-1.oe2403.aarch64 as a component of openEuler-24.03-LTS" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-24.03-LTS", "product_reference":"nodejs-full-i18n-20.18.2-1.oe2403.aarch64.rpm", "full_product_name":{ "product_id":"openEuler-24.03-LTS:nodejs-full-i18n-20.18.2-1.oe2403.aarch64", "name":"nodejs-full-i18n-20.18.2-1.oe2403.aarch64 as a component of openEuler-24.03-LTS" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-24.03-LTS", "product_reference":"nodejs-libs-20.18.2-1.oe2403.aarch64.rpm", "full_product_name":{ "product_id":"openEuler-24.03-LTS:nodejs-libs-20.18.2-1.oe2403.aarch64", "name":"nodejs-libs-20.18.2-1.oe2403.aarch64 as a component of openEuler-24.03-LTS" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-24.03-LTS", "product_reference":"npm-10.8.2-1.20.18.2.1.oe2403.aarch64.rpm", "full_product_name":{ "product_id":"openEuler-24.03-LTS:npm-10.8.2-1.20.18.2.1.oe2403.aarch64", "name":"npm-10.8.2-1.20.18.2.1.oe2403.aarch64 as a component of openEuler-24.03-LTS" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-24.03-LTS", "product_reference":"v8-devel-11.3.244.8-1.20.18.2.1.oe2403.aarch64.rpm", "full_product_name":{ "product_id":"openEuler-24.03-LTS:v8-devel-11.3.244.8-1.20.18.2.1.oe2403.aarch64", "name":"v8-devel-11.3.244.8-1.20.18.2.1.oe2403.aarch64 as a component of openEuler-24.03-LTS" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-24.03-LTS", "product_reference":"nodejs-20.18.2-1.oe2403.src.rpm", "full_product_name":{ "product_id":"openEuler-24.03-LTS:nodejs-20.18.2-1.oe2403.src", "name":"nodejs-20.18.2-1.oe2403.src as a component of openEuler-24.03-LTS" }, "category":"default_component_of" } ] }, "vulnerabilities":[ { "cve":"CVE-2025-23083", "notes":[ { "text":"With the aid of the diagnostics_channel utility, an event can be hooked into whenever a worker thread is created. This is not limited only to workers but also exposes internal workers, where an instance of them can be fetched, and its constructor can be grabbed and reinstated for malicious usage. \n\nThis vulnerability affects Permission Model users (--permission) on Node.js v20, v22, and v23.", "category":"description", "title":"Vulnerability Description" } ], "product_status":{ "fixed":[ "openEuler-24.03-LTS:nodejs-20.18.2-1.oe2403.x86_64", "openEuler-24.03-LTS:nodejs-debuginfo-20.18.2-1.oe2403.x86_64", "openEuler-24.03-LTS:nodejs-debugsource-20.18.2-1.oe2403.x86_64", "openEuler-24.03-LTS:nodejs-devel-20.18.2-1.oe2403.x86_64", "openEuler-24.03-LTS:nodejs-full-i18n-20.18.2-1.oe2403.x86_64", "openEuler-24.03-LTS:nodejs-libs-20.18.2-1.oe2403.x86_64", "openEuler-24.03-LTS:npm-10.8.2-1.20.18.2.1.oe2403.x86_64", "openEuler-24.03-LTS:v8-devel-11.3.244.8-1.20.18.2.1.oe2403.x86_64", "openEuler-24.03-LTS:nodejs-docs-20.18.2-1.oe2403.noarch", "openEuler-24.03-LTS:nodejs-20.18.2-1.oe2403.aarch64", "openEuler-24.03-LTS:nodejs-debuginfo-20.18.2-1.oe2403.aarch64", "openEuler-24.03-LTS:nodejs-debugsource-20.18.2-1.oe2403.aarch64", "openEuler-24.03-LTS:nodejs-devel-20.18.2-1.oe2403.aarch64", "openEuler-24.03-LTS:nodejs-full-i18n-20.18.2-1.oe2403.aarch64", "openEuler-24.03-LTS:nodejs-libs-20.18.2-1.oe2403.aarch64", "openEuler-24.03-LTS:npm-10.8.2-1.20.18.2.1.oe2403.aarch64", "openEuler-24.03-LTS:v8-devel-11.3.244.8-1.20.18.2.1.oe2403.aarch64", "openEuler-24.03-LTS:nodejs-20.18.2-1.oe2403.src" ] }, "remediations":[ { "product_ids":[ "openEuler-24.03-LTS:nodejs-20.18.2-1.oe2403.x86_64", "openEuler-24.03-LTS:nodejs-debuginfo-20.18.2-1.oe2403.x86_64", "openEuler-24.03-LTS:nodejs-debugsource-20.18.2-1.oe2403.x86_64", "openEuler-24.03-LTS:nodejs-devel-20.18.2-1.oe2403.x86_64", "openEuler-24.03-LTS:nodejs-full-i18n-20.18.2-1.oe2403.x86_64", "openEuler-24.03-LTS:nodejs-libs-20.18.2-1.oe2403.x86_64", "openEuler-24.03-LTS:npm-10.8.2-1.20.18.2.1.oe2403.x86_64", "openEuler-24.03-LTS:v8-devel-11.3.244.8-1.20.18.2.1.oe2403.x86_64", "openEuler-24.03-LTS:nodejs-docs-20.18.2-1.oe2403.noarch", "openEuler-24.03-LTS:nodejs-20.18.2-1.oe2403.aarch64", "openEuler-24.03-LTS:nodejs-debuginfo-20.18.2-1.oe2403.aarch64", "openEuler-24.03-LTS:nodejs-debugsource-20.18.2-1.oe2403.aarch64", "openEuler-24.03-LTS:nodejs-devel-20.18.2-1.oe2403.aarch64", "openEuler-24.03-LTS:nodejs-full-i18n-20.18.2-1.oe2403.aarch64", "openEuler-24.03-LTS:nodejs-libs-20.18.2-1.oe2403.aarch64", "openEuler-24.03-LTS:npm-10.8.2-1.20.18.2.1.oe2403.aarch64", "openEuler-24.03-LTS:v8-devel-11.3.244.8-1.20.18.2.1.oe2403.aarch64", "openEuler-24.03-LTS:nodejs-20.18.2-1.oe2403.src" ], "details":"nodejs security update", "category":"vendor_fix", "url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2025-1235" } ], "scores":[ { "cvss_v3":{ "baseSeverity":"HIGH", "baseScore":7.7, "vectorString":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N", "version":"3.1" }, "products":[ "openEuler-24.03-LTS:nodejs-20.18.2-1.oe2403.x86_64", "openEuler-24.03-LTS:nodejs-debuginfo-20.18.2-1.oe2403.x86_64", "openEuler-24.03-LTS:nodejs-debugsource-20.18.2-1.oe2403.x86_64", "openEuler-24.03-LTS:nodejs-devel-20.18.2-1.oe2403.x86_64", "openEuler-24.03-LTS:nodejs-full-i18n-20.18.2-1.oe2403.x86_64", "openEuler-24.03-LTS:nodejs-libs-20.18.2-1.oe2403.x86_64", "openEuler-24.03-LTS:npm-10.8.2-1.20.18.2.1.oe2403.x86_64", "openEuler-24.03-LTS:v8-devel-11.3.244.8-1.20.18.2.1.oe2403.x86_64", "openEuler-24.03-LTS:nodejs-docs-20.18.2-1.oe2403.noarch", "openEuler-24.03-LTS:nodejs-20.18.2-1.oe2403.aarch64", "openEuler-24.03-LTS:nodejs-debuginfo-20.18.2-1.oe2403.aarch64", "openEuler-24.03-LTS:nodejs-debugsource-20.18.2-1.oe2403.aarch64", "openEuler-24.03-LTS:nodejs-devel-20.18.2-1.oe2403.aarch64", "openEuler-24.03-LTS:nodejs-full-i18n-20.18.2-1.oe2403.aarch64", "openEuler-24.03-LTS:nodejs-libs-20.18.2-1.oe2403.aarch64", "openEuler-24.03-LTS:npm-10.8.2-1.20.18.2.1.oe2403.aarch64", "openEuler-24.03-LTS:v8-devel-11.3.244.8-1.20.18.2.1.oe2403.aarch64", "openEuler-24.03-LTS:nodejs-20.18.2-1.oe2403.src" ] } ], "threats":[ { "details":"High", "category":"impact" } ], "title":"CVE-2025-23083" } ] }