packages

Commit Graph

Author	SHA1	Message	Date
Hirokazu MORIKAWA	643afd8977	node: January 21, 2025 Security Releases This is a security release. Notable Changes CVE-2025-23083 - src,loader,permission: throw on InternalWorker use when permission model is enabled (High) CVE-2025-23085 - src: fix HTTP2 mem leak on premature close and ERR_PROTO (Medium) CVE-2025-23084 - path: fix path traversal in normalize() on Windows (Medium) Dependency update: CVE-2025-22150 - Use of Insufficiently Random Values in undici fetch() (Medium) Signed-off-by: Hirokazu MORIKAWA <morikw2@gmail.com>	2025-01-24 15:55:15 +08:00
Hirokazu MORIKAWA	af7183fc30	node: upgrade to 22.11.0 LTS Upgrade Version 22.11.0 'Jod' (LTS) Notable Changes This release marks the transition of Node.js 22.x into Long Term Support (LTS) with the codename 'Jod'. The 22.x release line now moves into "Active LTS" and will remain so until October 2025. After that time, it will move into "Maintenance" until end of life in April 2027. Signed-off-by: Hirokazu MORIKAWA <morikw2@gmail.com>	2024-11-23 11:02:23 +02:00
Hirokazu MORIKAWA	4b426972f8	node: bump to v20.16.0 Notable Changes process: add process.getBuiltinModule(id) doc: doc-only deprecate OpenSSL engine-based APIs inspector: fix disable async hooks on Debugger.setAsyncCallStackDepth Signed-off-by: Hirokazu MORIKAWA <morikw2@gmail.com>	2024-08-08 21:40:32 +08:00
Hirokazu MORIKAWA	a5e319df3d	node: bump to v20.15.0 Notable Changes * test_runner: support test plans * inspector: introduce the --inspect-wait flag * zlib: expose zlib.crc32() * cli: allow running wasm in limited vmem with --disable-wasm-trap-handler Signed-off-by: Hirokazu MORIKAWA <morikw2@gmail.com>	2024-06-23 11:06:32 -07:00
Hirokazu MORIKAWA	fe8b0e85af	node: bump to v20.13.1 Update to v20.13.1 Signed-off-by: Hirokazu MORIKAWA <morikw2@gmail.com>	2024-05-14 05:01:33 -07:00
Hirokazu MORIKAWA	ca3209a3b3	node: April 3, 2024 Security Releases This is a security release Notable Changes * CVE-2024-27983 - Assertion failed in node::http2::Http2Session::~Http2Session() leads to HTTP/2 server crash- (High) * CVE-2024-27982 - HTTP Request Smuggling via Content Length Obfuscation - (Medium) * llhttp version 9.2.1 * undici version 5.28.4 Changed to use gz according to main-snapshot Signed-off-by: Hirokazu MORIKAWA <morikw2@gmail.com>	2024-04-07 18:01:08 +08:00
Hirokazu MORIKAWA	3e51eef14c	node: upgrade to v20.9.0 node.js version 20.x is now active LTS. mipsel (pistachio) is no longer supported. Due to build difficulties, libuv shared libraries are not used. Signed-off-by: Hirokazu MORIKAWA <morikw2@gmail.com>	2023-11-02 00:25:22 +08:00

7 Commits