CVE & CISA-KEV Catalog

CVE-2022-4904

HIGH
8.6
CVSS v3
NVD

Description

A flaw was found in the c-ares package. The ares_set_sortlist is missing checks about the validity of the input string, which allows a possible arbitrary length stack overflow. This issue may cause a denial of service or a limited impact on confidentiality and integrity.

How to fix

Remediation Available
c-aresDebian
Fixed in:1.17.1-1+deb11u2CVE-2022-4904
Fixed in:1.18.1-2CVE-2022-4904
Fixed in:1.18.1-2CVE-2022-4904
Fixed in:1.18.1-2CVE-2022-4904
c-aresRed Hat / RHEL
Fixed in:0:1.13.0-8.el8RHSA-2023:7116
Fixed in:0:1.13.0-8.el8RHSA-2023:7116
Fixed in:0:1.13.0-8.el8RHSA-2023:7116
Fixed in:0:1.13.0-8.el8RHSA-2023:7116
Fixed in:0:1.13.0-8.el8RHSA-2023:7116
Fixed in:0:1.13.0-6.el8_8.3RHSA-2023:7543
Fixed in:0:1.13.0-6.el8_8.3RHSA-2023:7543
Fixed in:0:1.13.0-6.el8_8.3RHSA-2023:7543
Fixed in:0:1.13.0-6.el8_8.3RHSA-2023:7543
Fixed in:0:1.13.0-6.el8_8.3RHSA-2023:7543
Fixed in:0:1.13.0-8.el8RHSA-2023:7116
Fixed in:0:1.13.0-6.el8_8.3RHSA-2023:7543
Fixed in:0:1.17.1-5.el9_2.2RHSA-2023:7368
Fixed in:0:1.17.1-5.el9_2.2RHSA-2023:7368
Fixed in:0:1.17.1-5.el9_0.2RHSA-2023:6291
Fixed in:0:1.17.1-5.el9_0.2RHSA-2023:6291
Fixed in:0:1.17.1-5.el9_0.2RHSA-2023:6291
Fixed in:0:1.19.1-1.el9RHSA-2023:6635
Fixed in:0:1.17.1-5.el9_0.2RHSA-2023:6291
Fixed in:0:1.19.1-1.el9RHSA-2023:6635
Fixed in:0:1.19.1-1.el9RHSA-2023:6635
Fixed in:0:1.19.1-1.el9RHSA-2023:6635
Fixed in:0:1.19.1-1.el9RHSA-2023:6635
Fixed in:0:1.19.1-1.el9RHSA-2023:6635
Fixed in:0:1.17.1-5.el9_2.2RHSA-2023:7368
Fixed in:0:1.17.1-5.el9_2.2RHSA-2023:7368
Fixed in:0:1.17.1-5.el9_2.2RHSA-2023:7368
Fixed in:0:1.17.1-5.el9_0.2RHSA-2023:6291
Fixed in:0:1.17.1-5.el9_2.2RHSA-2023:7368
Fixed in:0:1.17.1-5.el9_0.2RHSA-2023:6291
c-aresRocky
Fixed in:0:1.13.0-8.el8RHSA-2023:7116
Fixed in:0:1.13.0-6.el8_8.3RHSA-2023:7543
Fixed in:0:1.13.0-6.el8_8.3RHSA-2023:7543
Fixed in:0:1.13.0-8.el8RHSA-2023:7116
Fixed in:0:1.13.0-8.el8RHSA-2023:7116
Fixed in:0:1.13.0-8.el8RHSA-2023:7116
Fixed in:0:1.13.0-6.el8_8.3RHSA-2023:7543
Fixed in:0:1.13.0-6.el8_8.3RHSA-2023:7543
Fixed in:0:1.13.0-6.el8_8.3RHSA-2023:7543
Fixed in:0:1.13.0-8.el8RHSA-2023:7116
Fixed in:0:1.13.0-8.el8RHSA-2023:7116
Fixed in:0:1.13.0-6.el8_8.3RHSA-2023:7543
Fixed in:0:1.19.1-1.el9RHSA-2023:6635
Fixed in:0:1.17.1-5.el9_0.2RHSA-2023:6291
Fixed in:0:1.19.1-1.el9RHSA-2023:6635
Fixed in:0:1.17.1-5.el9_0.2RHSA-2023:6291
Fixed in:0:1.17.1-5.el9_0.2RHSA-2023:6291
Fixed in:0:1.17.1-5.el9_0.2RHSA-2023:6291
Fixed in:0:1.19.1-1.el9RHSA-2023:6635
Fixed in:0:1.17.1-5.el9_2.2RHSA-2023:7368
Fixed in:0:1.17.1-5.el9_2.2RHSA-2023:7368
Fixed in:0:1.17.1-5.el9_2.2RHSA-2023:7368
Fixed in:0:1.17.1-5.el9_0.2RHSA-2023:6291
Fixed in:0:1.17.1-5.el9_2.2RHSA-2023:7368
Fixed in:0:1.17.1-5.el9_2.2RHSA-2023:7368
Fixed in:0:1.17.1-5.el9_2.2RHSA-2023:7368
Fixed in:0:1.17.1-5.el9_0.2RHSA-2023:6291
Fixed in:0:1.19.1-1.el9RHSA-2023:6635
Fixed in:0:1.19.1-1.el9RHSA-2023:6635
Fixed in:0:1.19.1-1.el9RHSA-2023:6635
c-ares-debuginfoRocky
Fixed in:0:1.13.0-8.el8RHSA-2023:7116
Fixed in:0:1.13.0-6.el8_8.3RHSA-2023:7543
Fixed in:0:1.13.0-6.el8_8.3RHSA-2023:7543
Fixed in:0:1.13.0-8.el8RHSA-2023:7116
Fixed in:0:1.13.0-8.el8RHSA-2023:7116
Fixed in:0:1.13.0-6.el8_8.3RHSA-2023:7543
Fixed in:0:1.13.0-6.el8_8.3RHSA-2023:7543
Fixed in:0:1.13.0-8.el8RHSA-2023:7116
Fixed in:0:1.13.0-8.el8RHSA-2023:7116
Fixed in:0:1.13.0-6.el8_8.3RHSA-2023:7543
Fixed in:0:1.19.1-1.el9RHSA-2023:6635
Fixed in:0:1.17.1-5.el9_0.2RHSA-2023:6291
Fixed in:0:1.17.1-5.el9_0.2RHSA-2023:6291
Fixed in:0:1.19.1-1.el9RHSA-2023:6635
Fixed in:0:1.19.1-1.el9RHSA-2023:6635
Fixed in:0:1.19.1-1.el9RHSA-2023:6635
Fixed in:0:1.17.1-5.el9_2.2RHSA-2023:7368
Fixed in:0:1.17.1-5.el9_2.2RHSA-2023:7368
Fixed in:0:1.17.1-5.el9_2.2RHSA-2023:7368
Fixed in:0:1.17.1-5.el9_2.2RHSA-2023:7368
Fixed in:0:1.17.1-5.el9_2.2RHSA-2023:7368
Fixed in:0:1.17.1-5.el9_0.2RHSA-2023:6291
Fixed in:0:1.19.1-1.el9RHSA-2023:6635
Fixed in:0:1.17.1-5.el9_0.2RHSA-2023:6291
Fixed in:0:1.17.1-5.el9_0.2RHSA-2023:6291
c-ares-debuginfoRed Hat / RHEL
Fixed in:0:1.13.0-8.el8RHSA-2023:7116
Fixed in:0:1.13.0-8.el8RHSA-2023:7116
Fixed in:0:1.13.0-6.el8_8.3RHSA-2023:7543
Fixed in:0:1.13.0-6.el8_8.3RHSA-2023:7543
Fixed in:0:1.13.0-8.el8RHSA-2023:7116
Fixed in:0:1.13.0-8.el8RHSA-2023:7116
Fixed in:0:1.13.0-8.el8RHSA-2023:7116
Fixed in:0:1.13.0-6.el8_8.3RHSA-2023:7543
Fixed in:0:1.13.0-6.el8_8.3RHSA-2023:7543
Fixed in:0:1.13.0-6.el8_8.3RHSA-2023:7543
Fixed in:0:1.17.1-5.el9_2.2RHSA-2023:7368
Fixed in:0:1.17.1-5.el9_0.2RHSA-2023:6291
Fixed in:0:1.19.1-1.el9RHSA-2023:6635
Fixed in:0:1.19.1-1.el9RHSA-2023:6635
Fixed in:0:1.19.1-1.el9RHSA-2023:6635
Fixed in:0:1.19.1-1.el9RHSA-2023:6635
Fixed in:0:1.19.1-1.el9RHSA-2023:6635
Fixed in:0:1.17.1-5.el9_2.2RHSA-2023:7368
Fixed in:0:1.17.1-5.el9_0.2RHSA-2023:6291
Fixed in:0:1.17.1-5.el9_2.2RHSA-2023:7368
Fixed in:0:1.17.1-5.el9_0.2RHSA-2023:6291
Fixed in:0:1.17.1-5.el9_2.2RHSA-2023:7368
Fixed in:0:1.17.1-5.el9_2.2RHSA-2023:7368
Fixed in:0:1.17.1-5.el9_0.2RHSA-2023:6291
Fixed in:0:1.17.1-5.el9_0.2RHSA-2023:6291
c-ares-debugsourceRocky
Fixed in:0:1.13.0-6.el8_8.3RHSA-2023:7543
Fixed in:0:1.13.0-6.el8_8.3RHSA-2023:7543
Fixed in:0:1.13.0-6.el8_8.3RHSA-2023:7543
Fixed in:0:1.13.0-6.el8_8.3RHSA-2023:7543
Fixed in:0:1.13.0-6.el8_8.3RHSA-2023:7543
Fixed in:0:1.13.0-8.el8RHSA-2023:7116
Fixed in:0:1.13.0-8.el8RHSA-2023:7116
Fixed in:0:1.13.0-8.el8RHSA-2023:7116
Fixed in:0:1.13.0-8.el8RHSA-2023:7116
Fixed in:0:1.13.0-8.el8RHSA-2023:7116
Fixed in:0:1.17.1-5.el9_2.2RHSA-2023:7368
Fixed in:0:1.19.1-1.el9RHSA-2023:6635
Fixed in:0:1.17.1-5.el9_0.2RHSA-2023:6291
Fixed in:0:1.17.1-5.el9_0.2RHSA-2023:6291
Fixed in:0:1.17.1-5.el9_2.2RHSA-2023:7368
Fixed in:0:1.17.1-5.el9_2.2RHSA-2023:7368
Fixed in:0:1.19.1-1.el9RHSA-2023:6635
Fixed in:0:1.17.1-5.el9_2.2RHSA-2023:7368
Fixed in:0:1.19.1-1.el9RHSA-2023:6635
Fixed in:0:1.17.1-5.el9_2.2RHSA-2023:7368
Fixed in:0:1.17.1-5.el9_0.2RHSA-2023:6291
Fixed in:0:1.17.1-5.el9_0.2RHSA-2023:6291
Fixed in:0:1.19.1-1.el9RHSA-2023:6635
Fixed in:0:1.17.1-5.el9_0.2RHSA-2023:6291
Fixed in:0:1.19.1-1.el9RHSA-2023:6635
c-ares-debugsourceRed Hat / RHEL
Fixed in:0:1.13.0-6.el8_8.3RHSA-2023:7543
Fixed in:0:1.13.0-6.el8_8.3RHSA-2023:7543
Fixed in:0:1.13.0-6.el8_8.3RHSA-2023:7543
Fixed in:0:1.13.0-6.el8_8.3RHSA-2023:7543
Fixed in:0:1.13.0-6.el8_8.3RHSA-2023:7543
Fixed in:0:1.13.0-8.el8RHSA-2023:7116
Fixed in:0:1.13.0-8.el8RHSA-2023:7116
Fixed in:0:1.13.0-8.el8RHSA-2023:7116
Fixed in:0:1.13.0-8.el8RHSA-2023:7116
Fixed in:0:1.13.0-8.el8RHSA-2023:7116
Fixed in:0:1.19.1-1.el9RHSA-2023:6635
Fixed in:0:1.17.1-5.el9_2.2RHSA-2023:7368
Fixed in:0:1.17.1-5.el9_0.2RHSA-2023:6291
Fixed in:0:1.17.1-5.el9_0.2RHSA-2023:6291
Fixed in:0:1.17.1-5.el9_2.2RHSA-2023:7368
Fixed in:0:1.19.1-1.el9RHSA-2023:6635
Fixed in:0:1.17.1-5.el9_0.2RHSA-2023:6291
Fixed in:0:1.19.1-1.el9RHSA-2023:6635
Fixed in:0:1.19.1-1.el9RHSA-2023:6635
Fixed in:0:1.19.1-1.el9RHSA-2023:6635
Fixed in:0:1.17.1-5.el9_2.2RHSA-2023:7368
Fixed in:0:1.17.1-5.el9_0.2RHSA-2023:6291
Fixed in:0:1.17.1-5.el9_0.2RHSA-2023:6291
Fixed in:0:1.17.1-5.el9_2.2RHSA-2023:7368
Fixed in:0:1.17.1-5.el9_2.2RHSA-2023:7368
c-ares-develRocky
Fixed in:0:1.13.0-8.el8RHSA-2023:7116
Fixed in:0:1.13.0-6.el8_8.3RHSA-2023:7543
Fixed in:0:1.13.0-6.el8_8.3RHSA-2023:7543
Fixed in:0:1.13.0-8.el8RHSA-2023:7116
Fixed in:0:1.13.0-6.el8_8.3RHSA-2023:7543
Fixed in:0:1.13.0-6.el8_8.3RHSA-2023:7543
Fixed in:0:1.13.0-8.el8RHSA-2023:7116
Fixed in:0:1.13.0-8.el8RHSA-2023:7116
Fixed in:0:1.13.0-6.el8_8.3RHSA-2023:7543
Fixed in:0:1.13.0-8.el8RHSA-2023:7116
Fixed in:0:1.17.1-5.el9_0.2RHSA-2023:6291
Fixed in:0:1.19.1-1.el9RHSA-2023:6635
Fixed in:0:1.17.1-5.el9_0.2RHSA-2023:6291
Fixed in:0:1.17.1-5.el9_2.2RHSA-2023:7368
Fixed in:0:1.17.1-5.el9_2.2RHSA-2023:7368
Fixed in:0:1.17.1-5.el9_2.2RHSA-2023:7368
Fixed in:0:1.17.1-5.el9_2.2RHSA-2023:7368
Fixed in:0:1.17.1-5.el9_2.2RHSA-2023:7368
Fixed in:0:1.19.1-1.el9RHSA-2023:6635
Fixed in:0:1.19.1-1.el9RHSA-2023:6635
Fixed in:0:1.19.1-1.el9RHSA-2023:6635
Fixed in:0:1.19.1-1.el9RHSA-2023:6635
Fixed in:0:1.17.1-5.el9_0.2RHSA-2023:6291
Fixed in:0:1.17.1-5.el9_0.2RHSA-2023:6291
Fixed in:0:1.17.1-5.el9_0.2RHSA-2023:6291
c-ares-develRed Hat / RHEL
Fixed in:0:1.13.0-8.el8RHSA-2023:7116
Fixed in:0:1.13.0-8.el8RHSA-2023:7116
Fixed in:0:1.13.0-8.el8RHSA-2023:7116
Fixed in:0:1.13.0-8.el8RHSA-2023:7116
Fixed in:0:1.13.0-8.el8RHSA-2023:7116
Fixed in:0:1.13.0-6.el8_8.3RHSA-2023:7543
Fixed in:0:1.13.0-6.el8_8.3RHSA-2023:7543
Fixed in:0:1.13.0-6.el8_8.3RHSA-2023:7543
Fixed in:0:1.13.0-6.el8_8.3RHSA-2023:7543
Fixed in:0:1.13.0-6.el8_8.3RHSA-2023:7543
Fixed in:0:1.19.1-1.el9RHSA-2023:6635
Fixed in:0:1.17.1-5.el9_2.2RHSA-2023:7368
Fixed in:0:1.17.1-5.el9_2.2RHSA-2023:7368
Fixed in:0:1.17.1-5.el9_0.2RHSA-2023:6291
Fixed in:0:1.17.1-5.el9_2.2RHSA-2023:7368
Fixed in:0:1.17.1-5.el9_2.2RHSA-2023:7368
Fixed in:0:1.17.1-5.el9_2.2RHSA-2023:7368
Fixed in:0:1.19.1-1.el9RHSA-2023:6635
Fixed in:0:1.19.1-1.el9RHSA-2023:6635
Fixed in:0:1.19.1-1.el9RHSA-2023:6635
Fixed in:0:1.17.1-5.el9_0.2RHSA-2023:6291
Fixed in:0:1.19.1-1.el9RHSA-2023:6635
Fixed in:0:1.17.1-5.el9_0.2RHSA-2023:6291
Fixed in:0:1.17.1-5.el9_0.2RHSA-2023:6291
Fixed in:0:1.17.1-5.el9_0.2RHSA-2023:6291
nodejsRed Hat / RHEL
Fixed in:1:18.14.2-2.module+el9.2.0.z+18497+a402347c.s390x::nodejs:18RHSA-2023:2654
Fixed in:1:18.14.2-3.module+el8.8.0+19021+4b8b11cc.s390x::nodejs:18RHSA-2023:4035
Fixed in:1:18.14.2-3.module+el8.8.0+19021+4b8b11cc.ppc64le::nodejs:18RHSA-2023:4035
Fixed in:1:18.14.2-2.module+el9.2.0.z+18497+a402347c.ppc64le::nodejs:18RHSA-2023:2654
Fixed in:1:18.14.2-3.module+el8.8.0+19021+4b8b11cc.src::nodejs:18RHSA-2023:4035
Fixed in:1:18.14.2-2.module+el9.2.0.z+18497+a402347c.src::nodejs:18RHSA-2023:2654
Fixed in:1:18.14.2-3.module+el8.8.0+19021+4b8b11cc.x86_64::nodejs:18RHSA-2023:4035
Fixed in:1:18.14.2-2.module+el9.2.0.z+18497+a402347c.x86_64::nodejs:18RHSA-2023:2654
Fixed in:1:18.14.2-3.module+el8.8.0+19021+4b8b11cc.aarch64::nodejs:18RHSA-2023:4035
Fixed in:1:18.14.2-2.module+el9.2.0.z+18497+a402347c.aarch64::nodejs:18RHSA-2023:2654
Fixed in:1:16.20.2-1.el9_0RHSA-2023:5533
Fixed in:1:16.19.1-1.el9_2RHSA-2023:2655
Fixed in:1:16.19.1-1.el9_2RHSA-2023:2655
Fixed in:1:16.19.1-1.el9_2RHSA-2023:2655
Fixed in:1:16.19.1-1.el9_2RHSA-2023:2655
Fixed in:1:16.19.1-1.el9_2RHSA-2023:2655
Fixed in:1:16.20.2-1.el9_0RHSA-2023:5533
Fixed in:1:16.20.2-1.el9_0RHSA-2023:5533
Fixed in:1:16.20.2-1.el9_0RHSA-2023:5533
Fixed in:1:16.20.2-1.el9_0RHSA-2023:5533
nodejsRocky
Fixed in:1:18.14.2-3.module+el8.8.0+19021+4b8b11cc.x86_64::nodejs:18RHSA-2023:4035
Fixed in:1:18.14.2-3.module+el8.8.0+19021+4b8b11cc.s390x::nodejs:18RHSA-2023:4035
Fixed in:1:18.14.2-3.module+el8.8.0+19021+4b8b11cc.ppc64le::nodejs:18RHSA-2023:4035
Fixed in:1:18.14.2-3.module+el8.8.0+19021+4b8b11cc.src::nodejs:18RHSA-2023:4035
Fixed in:1:18.14.2-3.module+el8.8.0+19021+4b8b11cc.aarch64::nodejs:18RHSA-2023:4035
Fixed in:1:18.14.2-2.module+el9.2.0.z+18497+a402347c.aarch64::nodejs:18RHSA-2023:2654
Fixed in:1:18.14.2-2.module+el9.2.0.z+18497+a402347c.src::nodejs:18RHSA-2023:2654
Fixed in:1:18.14.2-2.module+el9.2.0.z+18497+a402347c.ppc64le::nodejs:18RHSA-2023:2654
Fixed in:1:18.14.2-2.module+el9.2.0.z+18497+a402347c.s390x::nodejs:18RHSA-2023:2654
Fixed in:1:18.14.2-2.module+el9.2.0.z+18497+a402347c.x86_64::nodejs:18RHSA-2023:2654
Fixed in:1:16.19.1-1.el9_2RHSA-2023:2655
Fixed in:1:16.19.1-1.el9_2RHSA-2023:2655
Fixed in:1:16.19.1-1.el9_2RHSA-2023:2655
Fixed in:1:16.19.1-1.el9_2RHSA-2023:2655
Fixed in:1:16.19.1-1.el9_2RHSA-2023:2655
Fixed in:1:16.20.2-1.el9_0RHSA-2023:5533
Fixed in:1:16.20.2-1.el9_0RHSA-2023:5533
Fixed in:1:16.20.2-1.el9_0RHSA-2023:5533
Fixed in:1:16.20.2-1.el9_0RHSA-2023:5533
Fixed in:1:16.20.2-1.el9_0RHSA-2023:5533
nodejs-debuginfoRocky
Fixed in:1:18.14.2-2.module+el9.2.0.z+18497+a402347c.x86_64::nodejs:18RHSA-2023:2654
Fixed in:1:18.14.2-3.module+el8.8.0+19021+4b8b11cc.s390x::nodejs:18RHSA-2023:4035
Fixed in:1:18.14.2-2.module+el9.2.0.z+18497+a402347c.aarch64::nodejs:18RHSA-2023:2654
Fixed in:1:18.14.2-3.module+el8.8.0+19021+4b8b11cc.x86_64::nodejs:18RHSA-2023:4035
Fixed in:1:18.14.2-2.module+el9.2.0.z+18497+a402347c.s390x::nodejs:18RHSA-2023:2654
Fixed in:1:18.14.2-3.module+el8.8.0+19021+4b8b11cc.ppc64le::nodejs:18RHSA-2023:4035
Fixed in:1:18.14.2-2.module+el9.2.0.z+18497+a402347c.ppc64le::nodejs:18RHSA-2023:2654
Fixed in:1:18.14.2-3.module+el8.8.0+19021+4b8b11cc.aarch64::nodejs:18RHSA-2023:4035
Fixed in:1:16.19.1-1.el9_2RHSA-2023:2655
Fixed in:1:16.20.2-1.el9_0RHSA-2023:5533
Fixed in:1:16.19.1-1.el9_2RHSA-2023:2655
Fixed in:1:16.20.2-1.el9_0RHSA-2023:5533
Fixed in:1:16.19.1-1.el9_2RHSA-2023:2655
Fixed in:1:16.20.2-1.el9_0RHSA-2023:5533
Fixed in:1:16.19.1-1.el9_2RHSA-2023:2655
Fixed in:1:16.20.2-1.el9_0RHSA-2023:5533
Fixed in:1:16.20.2-1.el9_0RHSA-2023:5533
Fixed in:1:16.19.1-1.el9_2RHSA-2023:2655
nodejs-debuginfoRed Hat / RHEL
Fixed in:1:18.14.2-3.module+el8.8.0+19021+4b8b11cc.ppc64le::nodejs:18RHSA-2023:4035
Fixed in:1:18.14.2-2.module+el9.2.0.z+18497+a402347c.x86_64::nodejs:18RHSA-2023:2654
Fixed in:1:18.14.2-3.module+el8.8.0+19021+4b8b11cc.x86_64::nodejs:18RHSA-2023:4035
Fixed in:1:18.14.2-3.module+el8.8.0+19021+4b8b11cc.aarch64::nodejs:18RHSA-2023:4035
Fixed in:1:18.14.2-2.module+el9.2.0.z+18497+a402347c.s390x::nodejs:18RHSA-2023:2654
Fixed in:1:18.14.2-2.module+el9.2.0.z+18497+a402347c.ppc64le::nodejs:18RHSA-2023:2654
Fixed in:1:18.14.2-3.module+el8.8.0+19021+4b8b11cc.s390x::nodejs:18RHSA-2023:4035
Fixed in:1:18.14.2-2.module+el9.2.0.z+18497+a402347c.aarch64::nodejs:18RHSA-2023:2654
Fixed in:1:16.19.1-1.el9_2RHSA-2023:2655
Fixed in:1:16.20.2-1.el9_0RHSA-2023:5533
Fixed in:1:16.20.2-1.el9_0RHSA-2023:5533
Fixed in:1:16.20.2-1.el9_0RHSA-2023:5533
Fixed in:1:16.19.1-1.el9_2RHSA-2023:2655
Fixed in:1:16.20.2-1.el9_0RHSA-2023:5533
Fixed in:1:16.19.1-1.el9_2RHSA-2023:2655
Fixed in:1:16.19.1-1.el9_2RHSA-2023:2655
Fixed in:1:16.19.1-1.el9_2RHSA-2023:2655
Fixed in:1:16.20.2-1.el9_0RHSA-2023:5533
nodejs-debugsourceRocky
Fixed in:1:18.14.2-3.module+el8.8.0+19021+4b8b11cc.aarch64::nodejs:18RHSA-2023:4035
Fixed in:1:18.14.2-3.module+el8.8.0+19021+4b8b11cc.ppc64le::nodejs:18RHSA-2023:4035
Fixed in:1:18.14.2-2.module+el9.2.0.z+18497+a402347c.aarch64::nodejs:18RHSA-2023:2654
Fixed in:1:18.14.2-2.module+el9.2.0.z+18497+a402347c.ppc64le::nodejs:18RHSA-2023:2654
Fixed in:1:18.14.2-3.module+el8.8.0+19021+4b8b11cc.x86_64::nodejs:18RHSA-2023:4035
Fixed in:1:18.14.2-2.module+el9.2.0.z+18497+a402347c.x86_64::nodejs:18RHSA-2023:2654
Fixed in:1:18.14.2-3.module+el8.8.0+19021+4b8b11cc.s390x::nodejs:18RHSA-2023:4035
Fixed in:1:18.14.2-2.module+el9.2.0.z+18497+a402347c.s390x::nodejs:18RHSA-2023:2654
Fixed in:1:16.19.1-1.el9_2RHSA-2023:2655
Fixed in:1:16.19.1-1.el9_2RHSA-2023:2655
Fixed in:1:16.19.1-1.el9_2RHSA-2023:2655
Fixed in:1:16.20.2-1.el9_0RHSA-2023:5533
Fixed in:1:16.20.2-1.el9_0RHSA-2023:5533
Fixed in:1:16.19.1-1.el9_2RHSA-2023:2655
Fixed in:1:16.20.2-1.el9_0RHSA-2023:5533
Fixed in:1:16.19.1-1.el9_2RHSA-2023:2655
Fixed in:1:16.20.2-1.el9_0RHSA-2023:5533
Fixed in:1:16.20.2-1.el9_0RHSA-2023:5533
nodejs-debugsourceRed Hat / RHEL
Fixed in:1:18.14.2-2.module+el9.2.0.z+18497+a402347c.ppc64le::nodejs:18RHSA-2023:2654
Fixed in:1:18.14.2-2.module+el9.2.0.z+18497+a402347c.aarch64::nodejs:18RHSA-2023:2654
Fixed in:1:18.14.2-3.module+el8.8.0+19021+4b8b11cc.ppc64le::nodejs:18RHSA-2023:4035
Fixed in:1:18.14.2-2.module+el9.2.0.z+18497+a402347c.s390x::nodejs:18RHSA-2023:2654
Fixed in:1:18.14.2-3.module+el8.8.0+19021+4b8b11cc.aarch64::nodejs:18RHSA-2023:4035
Fixed in:1:18.14.2-3.module+el8.8.0+19021+4b8b11cc.x86_64::nodejs:18RHSA-2023:4035
Fixed in:1:18.14.2-2.module+el9.2.0.z+18497+a402347c.x86_64::nodejs:18RHSA-2023:2654
Fixed in:1:18.14.2-3.module+el8.8.0+19021+4b8b11cc.s390x::nodejs:18RHSA-2023:4035
Fixed in:1:16.20.2-1.el9_0RHSA-2023:5533
Fixed in:1:16.20.2-1.el9_0RHSA-2023:5533
Fixed in:1:16.20.2-1.el9_0RHSA-2023:5533
Fixed in:1:16.20.2-1.el9_0RHSA-2023:5533
Fixed in:1:16.19.1-1.el9_2RHSA-2023:2655
Fixed in:1:16.20.2-1.el9_0RHSA-2023:5533
Fixed in:1:16.19.1-1.el9_2RHSA-2023:2655
Fixed in:1:16.19.1-1.el9_2RHSA-2023:2655
Fixed in:1:16.19.1-1.el9_2RHSA-2023:2655
Fixed in:1:16.19.1-1.el9_2RHSA-2023:2655
nodejs-develRocky
Fixed in:1:18.14.2-2.module+el9.2.0.z+18497+a402347c.ppc64le::nodejs:18RHSA-2023:2654
Fixed in:1:18.14.2-3.module+el8.8.0+19021+4b8b11cc.aarch64::nodejs:18RHSA-2023:4035
Fixed in:1:18.14.2-3.module+el8.8.0+19021+4b8b11cc.ppc64le::nodejs:18RHSA-2023:4035
Fixed in:1:18.14.2-2.module+el9.2.0.z+18497+a402347c.x86_64::nodejs:18RHSA-2023:2654
Fixed in:1:18.14.2-2.module+el9.2.0.z+18497+a402347c.aarch64::nodejs:18RHSA-2023:2654
Fixed in:1:18.14.2-3.module+el8.8.0+19021+4b8b11cc.s390x::nodejs:18RHSA-2023:4035
Fixed in:1:18.14.2-2.module+el9.2.0.z+18497+a402347c.s390x::nodejs:18RHSA-2023:2654
Fixed in:1:18.14.2-3.module+el8.8.0+19021+4b8b11cc.x86_64::nodejs:18RHSA-2023:4035
nodejs-develRed Hat / RHEL
Fixed in:1:18.14.2-2.module+el9.2.0.z+18497+a402347c.s390x::nodejs:18RHSA-2023:2654
Fixed in:1:18.14.2-3.module+el8.8.0+19021+4b8b11cc.x86_64::nodejs:18RHSA-2023:4035
Fixed in:1:18.14.2-2.module+el9.2.0.z+18497+a402347c.ppc64le::nodejs:18RHSA-2023:2654
Fixed in:1:18.14.2-2.module+el9.2.0.z+18497+a402347c.aarch64::nodejs:18RHSA-2023:2654
Fixed in:1:18.14.2-3.module+el8.8.0+19021+4b8b11cc.ppc64le::nodejs:18RHSA-2023:4035
Fixed in:1:18.14.2-3.module+el8.8.0+19021+4b8b11cc.aarch64::nodejs:18RHSA-2023:4035
Fixed in:1:18.14.2-3.module+el8.8.0+19021+4b8b11cc.s390x::nodejs:18RHSA-2023:4035
Fixed in:1:18.14.2-2.module+el9.2.0.z+18497+a402347c.x86_64::nodejs:18RHSA-2023:2654
nodejs-docsRed Hat / RHEL
Fixed in:1:18.14.2-3.module+el8.8.0+19021+4b8b11cc.noarch::nodejs:18RHSA-2023:4035
Fixed in:1:18.14.2-2.module+el9.2.0.z+18497+a402347c.noarch::nodejs:18RHSA-2023:2654
Fixed in:1:16.19.1-1.el9_2RHSA-2023:2655
Fixed in:1:16.20.2-1.el9_0RHSA-2023:5533
nodejs-docsRocky
Fixed in:1:18.14.2-2.module+el9.2.0.z+18497+a402347c.noarch::nodejs:18RHSA-2023:2654
Fixed in:1:18.14.2-3.module+el8.8.0+19021+4b8b11cc.noarch::nodejs:18RHSA-2023:4035
Fixed in:1:16.19.1-1.el9_2RHSA-2023:2655
Fixed in:1:16.20.2-1.el9_0RHSA-2023:5533
nodejs-full-i18nRed Hat / RHEL
Fixed in:1:18.14.2-2.module+el9.2.0.z+18497+a402347c.s390x::nodejs:18RHSA-2023:2654
Fixed in:1:18.14.2-3.module+el8.8.0+19021+4b8b11cc.aarch64::nodejs:18RHSA-2023:4035
Fixed in:1:18.14.2-3.module+el8.8.0+19021+4b8b11cc.ppc64le::nodejs:18RHSA-2023:4035
Fixed in:1:18.14.2-3.module+el8.8.0+19021+4b8b11cc.s390x::nodejs:18RHSA-2023:4035
Fixed in:1:18.14.2-3.module+el8.8.0+19021+4b8b11cc.x86_64::nodejs:18RHSA-2023:4035
Fixed in:1:18.14.2-2.module+el9.2.0.z+18497+a402347c.x86_64::nodejs:18RHSA-2023:2654
Fixed in:1:18.14.2-2.module+el9.2.0.z+18497+a402347c.ppc64le::nodejs:18RHSA-2023:2654
Fixed in:1:18.14.2-2.module+el9.2.0.z+18497+a402347c.aarch64::nodejs:18RHSA-2023:2654
Fixed in:1:16.19.1-1.el9_2RHSA-2023:2655
Fixed in:1:16.19.1-1.el9_2RHSA-2023:2655
Fixed in:1:16.19.1-1.el9_2RHSA-2023:2655
Fixed in:1:16.20.2-1.el9_0RHSA-2023:5533
Fixed in:1:16.20.2-1.el9_0RHSA-2023:5533
Fixed in:1:16.20.2-1.el9_0RHSA-2023:5533
Fixed in:1:16.19.1-1.el9_2RHSA-2023:2655
Fixed in:1:16.20.2-1.el9_0RHSA-2023:5533
nodejs-full-i18nRocky
Fixed in:1:18.14.2-3.module+el8.8.0+19021+4b8b11cc.aarch64::nodejs:18RHSA-2023:4035
Fixed in:1:18.14.2-2.module+el9.2.0.z+18497+a402347c.x86_64::nodejs:18RHSA-2023:2654
Fixed in:1:18.14.2-3.module+el8.8.0+19021+4b8b11cc.ppc64le::nodejs:18RHSA-2023:4035
Fixed in:1:18.14.2-3.module+el8.8.0+19021+4b8b11cc.s390x::nodejs:18RHSA-2023:4035
Fixed in:1:18.14.2-3.module+el8.8.0+19021+4b8b11cc.x86_64::nodejs:18RHSA-2023:4035
Fixed in:1:18.14.2-2.module+el9.2.0.z+18497+a402347c.s390x::nodejs:18RHSA-2023:2654
Fixed in:1:18.14.2-2.module+el9.2.0.z+18497+a402347c.ppc64le::nodejs:18RHSA-2023:2654
Fixed in:1:18.14.2-2.module+el9.2.0.z+18497+a402347c.aarch64::nodejs:18RHSA-2023:2654
Fixed in:1:16.20.2-1.el9_0RHSA-2023:5533
Fixed in:1:16.19.1-1.el9_2RHSA-2023:2655
Fixed in:1:16.20.2-1.el9_0RHSA-2023:5533
Fixed in:1:16.20.2-1.el9_0RHSA-2023:5533
Fixed in:1:16.19.1-1.el9_2RHSA-2023:2655
Fixed in:1:16.20.2-1.el9_0RHSA-2023:5533
Fixed in:1:16.19.1-1.el9_2RHSA-2023:2655
Fixed in:1:16.19.1-1.el9_2RHSA-2023:2655
nodejs-libsRed Hat / RHEL
Fixed in:1:16.20.2-1.el9_0RHSA-2023:5533
Fixed in:1:16.19.1-1.el9_2RHSA-2023:2655
Fixed in:1:16.19.1-1.el9_2RHSA-2023:2655
Fixed in:1:16.19.1-1.el9_2RHSA-2023:2655
Fixed in:1:16.19.1-1.el9_2RHSA-2023:2655
Fixed in:1:16.20.2-1.el9_0RHSA-2023:5533
Fixed in:1:16.19.1-1.el9_2RHSA-2023:2655
Fixed in:1:16.20.2-1.el9_0RHSA-2023:5533
Fixed in:1:16.20.2-1.el9_0RHSA-2023:5533
Fixed in:1:16.20.2-1.el9_0RHSA-2023:5533
nodejs-libsRocky
Fixed in:1:16.20.2-1.el9_0RHSA-2023:5533
Fixed in:1:16.19.1-1.el9_2RHSA-2023:2655
Fixed in:1:16.20.2-1.el9_0RHSA-2023:5533
Fixed in:1:16.19.1-1.el9_2RHSA-2023:2655
Fixed in:1:16.19.1-1.el9_2RHSA-2023:2655
Fixed in:1:16.20.2-1.el9_0RHSA-2023:5533
Fixed in:1:16.20.2-1.el9_0RHSA-2023:5533
Fixed in:1:16.20.2-1.el9_0RHSA-2023:5533
Fixed in:1:16.19.1-1.el9_2RHSA-2023:2655
Fixed in:1:16.19.1-1.el9_2RHSA-2023:2655
nodejs-libs-debuginfoRocky
Fixed in:1:16.19.1-1.el9_2RHSA-2023:2655
Fixed in:1:16.19.1-1.el9_2RHSA-2023:2655
Fixed in:1:16.20.2-1.el9_0RHSA-2023:5533
Fixed in:1:16.20.2-1.el9_0RHSA-2023:5533
Fixed in:1:16.19.1-1.el9_2RHSA-2023:2655
Fixed in:1:16.19.1-1.el9_2RHSA-2023:2655
Fixed in:1:16.20.2-1.el9_0RHSA-2023:5533
Fixed in:1:16.19.1-1.el9_2RHSA-2023:2655
Fixed in:1:16.20.2-1.el9_0RHSA-2023:5533
Fixed in:1:16.20.2-1.el9_0RHSA-2023:5533
nodejs-libs-debuginfoRed Hat / RHEL
Fixed in:1:16.19.1-1.el9_2RHSA-2023:2655
Fixed in:1:16.20.2-1.el9_0RHSA-2023:5533
Fixed in:1:16.19.1-1.el9_2RHSA-2023:2655
Fixed in:1:16.20.2-1.el9_0RHSA-2023:5533
Fixed in:1:16.20.2-1.el9_0RHSA-2023:5533
Fixed in:1:16.20.2-1.el9_0RHSA-2023:5533
Fixed in:1:16.19.1-1.el9_2RHSA-2023:2655
Fixed in:1:16.19.1-1.el9_2RHSA-2023:2655
Fixed in:1:16.20.2-1.el9_0RHSA-2023:5533
Fixed in:1:16.19.1-1.el9_2RHSA-2023:2655
nodejs-nodemonRed Hat / RHEL
Fixed in:0:2.0.20-2.module+el8.8.0+18432+27f188ac.src::nodejs:18RHSA-2023:4035
Fixed in:0:2.0.20-2.module+el9.2.0.z+18497+a402347c.noarch::nodejs:18RHSA-2023:2654
Fixed in:0:2.0.20-2.module+el9.2.0.z+18497+a402347c.src::nodejs:18RHSA-2023:2654
Fixed in:0:2.0.20-2.module+el8.8.0+18432+27f188ac.noarch::nodejs:18RHSA-2023:4035
Fixed in:0:2.0.20-3.el9_2RHSA-2023:2655
Fixed in:0:2.0.20-3.el9_2RHSA-2023:2655
nodejs-nodemonRocky
Fixed in:0:2.0.20-2.module+el8.8.0+18432+27f188ac.src::nodejs:18RHSA-2023:4035
Fixed in:0:2.0.20-2.module+el8.8.0+18432+27f188ac.noarch::nodejs:18RHSA-2023:4035
Fixed in:0:2.0.20-2.module+el9.2.0.z+18497+a402347c.noarch::nodejs:18RHSA-2023:2654
Fixed in:0:2.0.20-2.module+el9.2.0.z+18497+a402347c.src::nodejs:18RHSA-2023:2654
Fixed in:0:2.0.20-3.el9_2RHSA-2023:2655
Fixed in:0:2.0.20-3.el9_2RHSA-2023:2655
nodejs-packagingRed Hat / RHEL
Fixed in:0:2021.06-4.module+el8.7.0+15582+19c314fa.src::nodejs:18RHSA-2023:4035
Fixed in:0:2021.06-4.module+el9.1.0+15718+e52ec601.src::nodejs:18RHSA-2023:2654
Fixed in:0:2021.06-4.module+el8.7.0+15582+19c314fa.noarch::nodejs:18RHSA-2023:4035
Fixed in:0:2021.06-4.module+el9.1.0+15718+e52ec601.noarch::nodejs:18RHSA-2023:2654
nodejs-packagingRocky
Fixed in:0:2021.06-4.module+el9.1.0+15718+e52ec601.src::nodejs:18RHSA-2023:2654
Fixed in:0:2021.06-4.module+el8.7.0+15582+19c314fa.noarch::nodejs:18RHSA-2023:4035
Fixed in:0:2021.06-4.module+el8.7.0+15582+19c314fa.src::nodejs:18RHSA-2023:4035
Fixed in:0:2021.06-4.module+el9.1.0+15718+e52ec601.noarch::nodejs:18RHSA-2023:2654
nodejs-packaging-bundlerRed Hat / RHEL
Fixed in:0:2021.06-4.module+el8.7.0+15582+19c314fa.noarch::nodejs:18RHSA-2023:4035
Fixed in:0:2021.06-4.module+el9.1.0+15718+e52ec601.noarch::nodejs:18RHSA-2023:2654
nodejs-packaging-bundlerRocky
Fixed in:0:2021.06-4.module+el9.1.0+15718+e52ec601.noarch::nodejs:18RHSA-2023:2654
Fixed in:0:2021.06-4.module+el8.7.0+15582+19c314fa.noarch::nodejs:18RHSA-2023:4035
npmRocky
Fixed in:1:9.5.0-1.18.14.2.3.module+el8.8.0+19021+4b8b11cc.s390x::nodejs:18RHSA-2023:4035
Fixed in:1:9.5.0-1.18.14.2.2.module+el9.2.0.z+18497+a402347c.x86_64::nodejs:18RHSA-2023:2654
Fixed in:1:9.5.0-1.18.14.2.3.module+el8.8.0+19021+4b8b11cc.x86_64::nodejs:18RHSA-2023:4035
Fixed in:1:9.5.0-1.18.14.2.2.module+el9.2.0.z+18497+a402347c.s390x::nodejs:18RHSA-2023:2654
Fixed in:1:9.5.0-1.18.14.2.2.module+el9.2.0.z+18497+a402347c.ppc64le::nodejs:18RHSA-2023:2654
Fixed in:1:9.5.0-1.18.14.2.2.module+el9.2.0.z+18497+a402347c.aarch64::nodejs:18RHSA-2023:2654
Fixed in:1:9.5.0-1.18.14.2.3.module+el8.8.0+19021+4b8b11cc.ppc64le::nodejs:18RHSA-2023:4035
Fixed in:1:9.5.0-1.18.14.2.3.module+el8.8.0+19021+4b8b11cc.aarch64::nodejs:18RHSA-2023:4035
Fixed in:1:8.19.4-1.16.20.2.1.el9_0RHSA-2023:5533
Fixed in:1:8.19.3-1.16.19.1.1.el9_2RHSA-2023:2655
Fixed in:1:8.19.4-1.16.20.2.1.el9_0RHSA-2023:5533
Fixed in:1:8.19.3-1.16.19.1.1.el9_2RHSA-2023:2655
Fixed in:1:8.19.4-1.16.20.2.1.el9_0RHSA-2023:5533
Fixed in:1:8.19.3-1.16.19.1.1.el9_2RHSA-2023:2655
Fixed in:1:8.19.4-1.16.20.2.1.el9_0RHSA-2023:5533
Fixed in:1:8.19.3-1.16.19.1.1.el9_2RHSA-2023:2655
npmRed Hat / RHEL
Fixed in:1:9.5.0-1.18.14.2.3.module+el8.8.0+19021+4b8b11cc.x86_64::nodejs:18RHSA-2023:4035
Fixed in:1:9.5.0-1.18.14.2.3.module+el8.8.0+19021+4b8b11cc.s390x::nodejs:18RHSA-2023:4035
Fixed in:1:9.5.0-1.18.14.2.3.module+el8.8.0+19021+4b8b11cc.ppc64le::nodejs:18RHSA-2023:4035
Fixed in:1:9.5.0-1.18.14.2.3.module+el8.8.0+19021+4b8b11cc.aarch64::nodejs:18RHSA-2023:4035
Fixed in:1:9.5.0-1.18.14.2.2.module+el9.2.0.z+18497+a402347c.x86_64::nodejs:18RHSA-2023:2654
Fixed in:1:9.5.0-1.18.14.2.2.module+el9.2.0.z+18497+a402347c.s390x::nodejs:18RHSA-2023:2654
Fixed in:1:9.5.0-1.18.14.2.2.module+el9.2.0.z+18497+a402347c.ppc64le::nodejs:18RHSA-2023:2654
Fixed in:1:9.5.0-1.18.14.2.2.module+el9.2.0.z+18497+a402347c.aarch64::nodejs:18RHSA-2023:2654
Fixed in:1:8.19.4-1.16.20.2.1.el9_0RHSA-2023:5533
Fixed in:1:8.19.4-1.16.20.2.1.el9_0RHSA-2023:5533
Fixed in:1:8.19.4-1.16.20.2.1.el9_0RHSA-2023:5533
Fixed in:1:8.19.3-1.16.19.1.1.el9_2RHSA-2023:2655
Fixed in:1:8.19.4-1.16.20.2.1.el9_0RHSA-2023:5533
Fixed in:1:8.19.3-1.16.19.1.1.el9_2RHSA-2023:2655
Fixed in:1:8.19.3-1.16.19.1.1.el9_2RHSA-2023:2655
Fixed in:1:8.19.3-1.16.19.1.1.el9_2RHSA-2023:2655
c-aresUbuntu
Fixed in:1.14.0-1ubuntu0.2USN-5907-1
Fixed in:1.15.0-1ubuntu0.2USN-5907-1
Fixed in:1.18.1-1ubuntu0.22.04.1USN-5907-1
Fixed in:1.18.1-1ubuntu0.22.10.1USN-5907-1
libc-ares2Ubuntu
Fixed in:1.14.0-1ubuntu0.2USN-5907-1
Fixed in:1.15.0-1ubuntu0.2USN-5907-1
Fixed in:1.18.1-1ubuntu0.22.04.1USN-5907-1
Fixed in:1.18.1-1ubuntu0.22.10.1USN-5907-1

Remediation is compiled from vendor and distribution security advisories. Always confirm against the linked source for your exact version and platform.

CVSS v3 Vector

Exploitability

Attack VectorNetwork
Attack ComplexityLow
Privileges RequiredNone
User InteractionNone
ScopeUnchanged

Impact

ConfidentialityLow
IntegrityLow
AvailabilityHigh

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H

Exploit Intelligence

1.23%probability of exploitation in 30 days
65thpercentile

Moderate risk: more likely to be exploited than 65% of all known CVEs.

References

Embed a live status badge for CVE-2022-4904
CVE-2022-4904 severity badge

Markdown

[![CVE-2022-4904](https://tridentstack.com/cve/badge/CVE-2022-4904.svg)](https://tridentstack.com/cve/CVE-2022-4904)

HTML

<a href="https://tridentstack.com/cve/CVE-2022-4904"><img src="https://tridentstack.com/cve/badge/CVE-2022-4904.svg" alt="CVE-2022-4904"></a>

Find and fix vulnerabilities across your fleet

TridentStack Control continuously scans your Windows, macOS, and Linux fleet for known vulnerabilities, prioritizes them by severity and active exploitation, and patches them automatically.

Start free

This product uses NVD data but is not endorsed or certified by the NVD. EPSS scores courtesy of FIRST.org (https://www.first.org/epss). Source: CISA KEV Catalog. Data as of 2025-12-02.