kpriv/pkgsrc
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
pkgsrc/lang/nodejs12
History
adam d02380a3c0 nodejs12: updated to 12.15.0 
Version 12.15.0 'Erbium' (LTS):

Notable changes

This is a security release.

Vulnerabilities fixed:

CVE-2019-15606: HTTP header values do not have trailing OWS trimmed.
CVE-2019-15605: HTTP request smuggling using malformed Transfer-Encoding header.
CVE-2019-15604: Remotely trigger an assertion on a TLS server with a malformed certificate string.

Also, HTTP parsing is more strict to be more secure. Since this may cause problems in interoperability with some non-conformant HTTP implementations, it is possible to disable the strict checks with the --insecure-http-parser command line flag, or the insecureHTTPParser http option. Using the insecure HTTP parser should be avoided.
2020-02-07 09:51:09 +00:00
..
patches nodejs12: use external OpenSSL; bump revision 2020-01-24 18:55:49 +00:00
buildlink3.mk nodejs12: use external OpenSSL; bump revision 2020-01-24 18:55:49 +00:00
DESCR
distinfo nodejs12: updated to 12.15.0 2020-02-07 09:51:09 +00:00
Makefile nodejs12: updated to 12.15.0 2020-02-07 09:51:09 +00:00
PLIST nodejs12: use external OpenSSL; bump revision 2020-01-24 18:55:49 +00:00