v22.15.1
📦 node-jsView on GitHub →
🐛 2 fixes🔧 3 symbols
Summary
This is a security release addressing two vulnerabilities: CVE-2025-23166 regarding async crypto error handling and CVE-2025-23165 regarding filesystem request cleanup.
Migration Steps
- Update Node.js to the latest security release to mitigate CVE-2025-23166 and CVE-2025-23165.
🐛 Bug Fixes
- (CVE-2025-23166) Fixed error handling on asynchronous crypto operations to prevent potential security vulnerabilities.
- (CVE-2025-23165) Added missing call to uv_fs_req_cleanup in the fs module to prevent resource leaks.