NodeJS update

Olli73773 · September 25, 2025, 3:19pm

Hi,

I run FreePBX 17.0.21 on Debian 12.

Debian reports security problems with nodejs ([SECURITY] [DSA 5991-1] nodejs security update).
Debian has provided updated packages.
On FreePBX the packages are set on hold.

Whats the best way to apply the security fixes for libnode-dev, libnode108 and nodejs packages?

Is it save to unhold the packages or will this break FreePBX?

shahin · September 25, 2025, 3:33pm

hold on testing.
Get:157 http://deb.debian.org/debian bookworm/main amd64 nodejs amd64 18.20.4+dfsg-1~deb12u1 [319 kB]

shahin · September 25, 2025, 3:44pm

root@freepbx-17:~# apt list libnode-dev
Listing... Done
libnode-dev/oldstable,oldstable-security,oldstable,now 18.20.4+dfsg-1~deb12u1 amd64 [installed,automatic]

It works, you can upgrade

Reaps · October 22, 2025, 12:09pm

Could anyone please clarify what commands are required???

shahin · October 22, 2025, 12:15pm

apt list libnode-dev
apt update
apt upgrade 
apt list libnode-dev

@Reaps ^^

Reaps · October 22, 2025, 1:10pm

thank you

N1ck_J · November 3, 2025, 2:51pm

Were you able to upgrade all 3 and everything still working as expected?

I seen the commands, however they need to be taken off hold first to be able to update them.