From 2256b4cc58f773af832d15905dc737ae2fc58f3e Mon Sep 17 00:00:00 2001
From: RafaelGSS <rafael.nunu@hotmail.com>
Date: Wed, 14 Jan 2026 14:40:27 -0300
Subject: [PATCH 1/2] Blog: change impact for CVE-2025-59464

---
 .../en/blog/vulnerability/december-2025-security-releases.md | 5 ++++-
 1 file changed, 4 insertions(+), 1 deletion(-)

diff --git a/apps/site/pages/en/blog/vulnerability/december-2025-security-releases.md b/apps/site/pages/en/blog/vulnerability/december-2025-security-releases.md
index 6a36f702473d4..ee66d2f224337 100644
--- a/apps/site/pages/en/blog/vulnerability/december-2025-security-releases.md
+++ b/apps/site/pages/en/blog/vulnerability/december-2025-security-releases.md
@@ -103,7 +103,10 @@ TLS connections. Over time this can lead to resource exhaustion and denial of se
 
 Impact:
 
-- This vulnerability affects all users in active release lines: 20.x, 22.x, 24.x
+- This vulnerability was already fixed on Node.js v24.12.0. It has no impact on
+  other active release lines.
+
+This security release only issued the public CVE for that.
 
 Thank you, to giant_anteater for reporting this vulnerability and thank you RafaelGSS for fixing it.
 

From f4d3ac6ff288cbce6cf057be455084638785e0ec Mon Sep 17 00:00:00 2001
From: Rafael Gonzaga <rafael.nunu@hotmail.com>
Date: Wed, 14 Jan 2026 18:30:24 -0300
Subject: [PATCH 2/2] Update
 apps/site/pages/en/blog/vulnerability/december-2025-security-releases.md

Co-authored-by: Joyee Cheung <joyeec9h3@gmail.com>
Signed-off-by: Rafael Gonzaga <rafael.nunu@hotmail.com>
---
 .../en/blog/vulnerability/december-2025-security-releases.md    | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/apps/site/pages/en/blog/vulnerability/december-2025-security-releases.md b/apps/site/pages/en/blog/vulnerability/december-2025-security-releases.md
index ee66d2f224337..b71bf5608db8a 100644
--- a/apps/site/pages/en/blog/vulnerability/december-2025-security-releases.md
+++ b/apps/site/pages/en/blog/vulnerability/december-2025-security-releases.md
@@ -106,7 +106,7 @@ Impact:
 - This vulnerability was already fixed on Node.js v24.12.0. It has no impact on
   other active release lines.
 
-This security release only issued the public CVE for that.
+This public CVE is only issued for the affected v24 releases.
 
 Thank you, to giant_anteater for reporting this vulnerability and thank you RafaelGSS for fixing it.