oss-sec mailing list archives
Re: Fwd: Node.js security updates for all active release lines, May 2025
From: Solar Designer <solar () openwall com>
Date: Wed, 9 Jul 2025 02:54:00 +0200
On Tue, Jul 08, 2025 at 08:16:19AM -0700, Rafael Gonzaga wrote:
---------- Mensagem encaminhada --------- De: Rafael Gonzaga <work () rafaelgss dev> Data: quarta-feira, 14 de maio de 2025 às 18:47:12 UTC-3 Assunto: Re: Node.js security updates for all active release lines, May 2025 Para: nodejs-sec <nodejs-sec () googlegroups com> The planned security releases are now available. You can read more about the details at https://nodejs.org/en/blog/vulnerability/may-2025-security-releases
I am puzzled. Didn't we bring this to oss-security already back in May? - https://www.openwall.com/lists/oss-security/2025/05/14/10 While I am posting this anyway, I see there was a follow-up not CC'ed to you Rafael that time: https://www.openwall.com/lists/oss-security/2025/05/15/4 which said:
Hi Rafael Could you please get those CVE's published to MITRE as well. The cve.org portal shows their status as "Reserved". Thanks in advance. Thanks and regards, Yogesh Mittal Manager, Product Security Vulnerability Management Red Hat Pune
So I am relaying it to you now. Alexander
Current thread:
- Fwd: Node.js security updates for all active release lines, May 2025 Rafael Gonzaga (Jul 08)
- Re: Fwd: Node.js security updates for all active release lines, May 2025 Solar Designer (Jul 08)
- Re: Fwd: Node.js security updates for all active release lines, May 2025 Salvatore Bonaccorso (Jul 08)
- Re: Fwd: Node.js security updates for all active release lines, May 2025 Solar Designer (Jul 08)