Detections
Analytics

TencentOS Server 4: nodejs20 (TSSA-2025:0293)

high Nessus Plugin ID 239624

Synopsis

The remote TencentOS Server 4 host is missing one or more security updates.

Description

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2025:0293 advisory.

 Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:

 CVE-2025-23085:
 A memory leak could occur when a remote peer abruptly closes the socket without sending a GOAWAY notification. Additionally, if an invalid header was detected by nghttp2, causing the connection to be terminated by the peer, the same leak was triggered. This flaw could lead to increased memory consumption and potential denial of service under certain conditions.

 This vulnerability affects HTTP/2 Server users on Node.js v18.x, v20.x, v22.x and v23.x.

 CVE-2024-36137:
 A vulnerability has been identified in Node.js, affecting users of the experimental permission model when the --allow-fs-write flag is used.

 Node.js Permission Model do not operate on file descriptors, however, operations such as fs.fchown or fs.fchmod can use a read-only file descriptor to change the owner and permissions of a file.

 CVE-2024-22018:
 A vulnerability has been identified in Node.js, affecting users of the experimental permission model when the --allow-fs-read flag is used.
 This flaw arises from an inadequate permission model that fails to restrict file stats through the fs.lstat API. As a result, malicious actors can retrieve stats from files that they do not have explicit read access to.
 This vulnerability affects all users using the experimental permission model in Node.js 20 and Node.js 21.
 Please note that at the time this CVE was issued, the permission model is an experimental feature of Node.js.

Tenable has extracted the preceding description block directly from the Tencent Linux security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

Solution

Update the affected packages.

See Also

https://mirrors.tencent.com/tlinux/errata/tssa-20250293.xml

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-22018

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-36137

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-23085

Plugin Details

Severity: High

ID: 239624

File Name: tencentos_TSSA_2025_0293.nasl

Version: 1.1

Type: local

Published: 6/16/2025

Updated: 6/16/2025

Supported Sensors: Nessus

Vulnerability Information

CPE: p-cpe:/a:tencent:tencentos_server:nodejs20, cpe:/o:tencent:tencentos_server:4

Required KB Items: Host/local_checks_enabled, Host/cpu, Host/etc/os-release, Host/TencentOS/rpm-list

Exploit Ease: No known exploits are available

Patch Publication Date: 4/16/2025

Vulnerability Publication Date: 4/16/2025