VDB

GCVE-VVD-MAGEIA-2023-299

GCVE-VVD-MAGEIA-2023-299
Advisory Published
Vulnetix · Advisory published October 22, 2023
This is a security release. The following CVEs are fixed in this release: CVE-2023-44487: nghttp2 Security Release (High) CVE-2023-45143: undici Security Release (High) CVE-2023-38552: Integrity checks according to policies can be circumvented (Medium) CVE-2023-39333: Code injection via WebAssembly export names (Low) More detailed information on each of the vulnerabilities can be found in October 2023 Security Releases blog post.
Download JSON Open in Console

Affected Products

VendorProductVersionsPlatforms
Mageiayarnpkg0 (affected), 1.22.19-14.mga9 (unaffected)
Mageianodejs0 (affected), 18.18.2-1.mga9 (unaffected)

References

Updated nodejs packages fix security vulnerabilities
advisory
Updated nodejs packages fix security vulnerabilities
issue
Updated nodejs packages fix security vulnerabilities
issue
Updated nodejs packages fix security vulnerabilities
fix
Updated nodejs packages fix security vulnerabilities
fix

Browse GCVE Records

100 records in the GCVE database · Updated April 16, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

Open in Console Download JSON
$ Console Community · 100/wk Open console ›