git.libre-soc.org Git - buildroot.git/commit

author	Martin Bark <martin@barkynet.com>
	Wed, 3 Jun 2020 19:31:51 +0000 (20:31 +0100)
committer	Yann E. MORIN <yann.morin.1998@free.fr>
	Wed, 3 Jun 2020 21:00:32 +0000 (23:00 +0200)
commit	06decad41bcf187ad88fde1fe8039e6fb65fabc7
tree	d9efa4b57f477d2051d715174ecf4439b2af00ef	tree
parent	e500367ea44adffcfc3132099bedf550d9913313	commit \| diff

package/nodejs: security bump to 12.18.0

This is a security release.

Vulnerabilities fixed:

CVE-2020-8172: TLS session reuse can lead to host certificate verification bypass (High).
CVE-2020-11080: HTTP/2 Large Settings Frame DoS (Low).
CVE-2020-8174: napi_get_value_string_*() allows various kinds of memory corruption (High).

See https://nodejs.org/en/blog/release/v12.18.0/

Signed-off-by: Martin Bark <martin@barkynet.com>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>

package/nodejs/nodejs.hash		diff \| blob \| history
package/nodejs/nodejs.mk		diff \| blob \| history

RSS Atom