ALAS2023-2025-1347

Details

Package updates are available for Amazon Linux 2023 that fix the following vulnerabilities: CVE-2025-62408: Use after free due to connection being cleaned up after error

Affected Packages

AmazonLinux:2023nodejs22

Fixed in:

22.21.1-1.amzn2023.0.2

AmazonLinux:2023nodejs22-debuginfo

Fixed in:

22.21.1-1.amzn2023.0.2

AmazonLinux:2023nodejs22-debugsource

Fixed in:

22.21.1-1.amzn2023.0.2

AmazonLinux:2023nodejs22-devel

Fixed in:

22.21.1-1.amzn2023.0.2

AmazonLinux:2023nodejs22-docs

Fixed in:

22.21.1-1.amzn2023.0.2

AmazonLinux:2023nodejs22-full-i18n

Fixed in:

22.21.1-1.amzn2023.0.2

AmazonLinux:2023nodejs22-libs

Fixed in:

22.21.1-1.amzn2023.0.2

AmazonLinux:2023nodejs22-libs-debuginfo

Fixed in:

22.21.1-1.amzn2023.0.2

AmazonLinux:2023nodejs22-npm

Fixed in:

10.9.4-1.22.21.1.1.amzn2023.0.2

AmazonLinux:2023v8-12.4-devel

Fixed in:

12.4.254.21-1.22.21.1.1.amzn2023.0.2

References

ADVISORYhttps://alas.aws.amazon.com/AL2023/ALAS2023-2025-1347.html

ALAS2023-2025-1347

Details

Affected Packages

References

Related

Ecosystems

Timeline