projects / buildroot.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 79e2301) | patch
package/nodejs: security bump to version 12.22.4
authorPeter Korsgaard <peter@korsgaard.com>
Sun, 8 Aug 2021 18:02:23 +0000 (20:02 +0200)
committerPeter Korsgaard <peter@korsgaard.com>
Sun, 8 Aug 2021 19:34:42 +0000 (21:34 +0200)
commitca92d31cff4281c968e505fc588c5a480e7f5843
tree46f86faac5c27f9b9752652bbc3cfb5a54ca320atree
parent79e230178b57b1b871fa8c888b65b10d1bf31912commit | diff
package/nodejs: security bump to version 12.22.4

Fixes the following security issues:

- CVE-2021-22930: Use after free on close http2 on stream canceling (High)

  Node.js is vulnerable to a use after free attack where an attacker might
  be able to exploit the memory corruption, to change process behavior.

Drop 0002-Fix-build-with-ICU-68.patch as this is now fixed upstream since
https://github.com/nodejs/node/commit/e459c79b02

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
package/nodejs/0002-Fix-build-with-ICU-68.patch [deleted file] blob | history
package/nodejs/nodejs.hash diff | blob | history
package/nodejs/nodejs.mk diff | blob | history