Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. Security Fix: * nodejs: vulnerable to timing variant of the Bleichenbacher attack against PKCS#1 v1.5 padding * nodejs: reading unprocessed HTTP request with unbounded chunk extension allows DoS attacks * nodejs: code injection and privilege escalation through Linux capabilities * nodejs: path traversal by monkey-patching buffer internals * nodejs: multiple permission model bypasses due to improper path traversal sequence sanitization * nodejs: improper handling of wildcards in --allow-fs-read and --allow-fs-write * nodejs: setuid does not drop all privileges due to io_uring