diff options
| author | adam <adam@pkgsrc.org> | 2021-04-07 06:21:56 +0000 |
|---|---|---|
| committer | adam <adam@pkgsrc.org> | 2021-04-07 06:21:56 +0000 |
| commit | e962f70850fbd8e0f527a7449c1cb9077fa5e054 (patch) | |
| tree | ad1d8a0cc1147eba6c9e714df38d83afda4a0460 /lang/nodejs | |
| parent | 80023cdba2ad35aa43db58a58bc0af850dd96f6f (diff) | |
| download | pkgsrc-e962f70850fbd8e0f527a7449c1cb9077fa5e054.tar.gz | |
nodejs: updated to 14.16.1
Version 14.16.1 'Fermium' (LTS)
This is a security release.
Notable Changes
Vulnerabilities fixed:
CVE-2021-3450: OpenSSL - CA certificate check bypass with X509_V_FLAG_X509_STRICT (High)
This is a vulnerability in OpenSSL which may be exploited through Node.js. You can read more about it in https://www.openssl.org/news/secadv/20210325.txt
Impacts:
All versions of the 15.x, 14.x, 12.x and 10.x releases lines
CVE-2021-3449: OpenSSL - NULL pointer deref in signature_algorithms processing (High)
This is a vulnerability in OpenSSL which may be exploited through Node.js. You can read more about it in https://www.openssl.org/news/secadv/20210325.txt
Impacts:
All versions of the 15.x, 14.x, 12.x and 10.x releases lines
CVE-2020-7774: npm upgrade - Update y18n to fix Prototype-Pollution (High)
This is a vulnerability in the y18n npm module which may be exploited by prototype pollution. You can read more about it in https://github.com/advisories/GHSA-c4w7-xm78-47vh
Impacts:
All versions of the 14.x, 12.x and 10.x releases lines
Diffstat (limited to 'lang/nodejs')
| -rw-r--r-- | lang/nodejs/Makefile | 4 | ||||
| -rw-r--r-- | lang/nodejs/distinfo | 10 |
2 files changed, 7 insertions, 7 deletions
diff --git a/lang/nodejs/Makefile b/lang/nodejs/Makefile index 58da287ce74..ed5b60a391f 100644 --- a/lang/nodejs/Makefile +++ b/lang/nodejs/Makefile @@ -1,6 +1,6 @@ -# $NetBSD: Makefile,v 1.208 2021/02/24 11:06:12 adam Exp $ +# $NetBSD: Makefile,v 1.209 2021/04/07 06:21:56 adam Exp $ -DISTNAME= node-v14.16.0 +DISTNAME= node-v14.16.1 EXTRACT_SUFX= .tar.xz USE_LANGUAGES= c gnu++14 diff --git a/lang/nodejs/distinfo b/lang/nodejs/distinfo index 31dd9d76b5c..158cfae1e7c 100644 --- a/lang/nodejs/distinfo +++ b/lang/nodejs/distinfo @@ -1,9 +1,9 @@ -$NetBSD: distinfo,v 1.193 2021/02/24 11:06:12 adam Exp $ +$NetBSD: distinfo,v 1.194 2021/04/07 06:21:56 adam Exp $ -SHA1 (node-v14.16.0.tar.xz) = 52ee20a121bc54990d6e0b3320c26a4be4c38325 -RMD160 (node-v14.16.0.tar.xz) = 17eaeca8d358432e3b9e149d0eb26ba71fdf7545 -SHA512 (node-v14.16.0.tar.xz) = ac6f7408df35e2bae8bcad3f461d8e260a2762c77f78d737b0339a592724ff1a98ba171a95e44366e731accfb3208e7cfd6d3edd0f646ddc26a01cfbdbbb655b -Size (node-v14.16.0.tar.xz) = 33301140 bytes +SHA1 (node-v14.16.1.tar.xz) = 3b8001e12cdae8b0e0fb2c1f7a8eb7f314d30cfc +RMD160 (node-v14.16.1.tar.xz) = cf91d50c5833f8f20799bb2bbdfc9152207c50d0 +SHA512 (node-v14.16.1.tar.xz) = d4f5fbab69592ae555613b2186090b85a458d2211b6035989aee2617bfd0f6768ca767ec45ce12756a9c452d00af7237edee3b1ae526049e9fcd01f8f67680c0 +Size (node-v14.16.1.tar.xz) = 33297064 bytes SHA1 (patch-common.gypi) = f0bd2962bf7c8466db24b35a35154897ecad6316 SHA1 (patch-deps_cares_cares.gyp) = 22b44f2ac59963f694dfe4f4585e08960b3dec32 SHA1 (patch-deps_uv_common.gypi) = d38a9c8d9e3522f15812aec2f5b1e1e636d4bab3 |