kpriv/pkgsrc
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
pkgsrc/lang/nodejs10
History
adam 9da0146605 nodejs10: updated to 10.21.0 
Version 10.21.0 'Dubnium' (LTS)

Notable changes

This is a security release.

Vulnerabilities fixed:

CVE-2020-8174: napi_get_value_string_*() allows various kinds of memory corruption (High).
CVE-2020-10531: ICU-20958 Prevent SEGV_MAPERR in append (High).
CVE-2020-11080: HTTP/2 Large Settings Frame DoS (Low).

Commits

- deps: fix OPENSSLDIR on Windows
- deps: backport ICU-20958 to fix CVE-2020-10531
- (SEMVER-MINOR) deps: update nghttp2 to 1.41.0
- (SEMVER-MINOR) http2: implement support for max settings entries
- napi: fix memory corruption vulnerability
2020-06-03 09:25:38 +00:00
..
patches Don't implicitly convert pointers to bool. 2020-05-30 20:44:39 +00:00
buildlink3.mk nodejs10: updated to 10.21.0 2020-06-03 09:25:38 +00:00
DESCR
distinfo nodejs10: updated to 10.21.0 2020-06-03 09:25:38 +00:00
Makefile nodejs10: updated to 10.21.0 2020-06-03 09:25:38 +00:00
PLIST nodejs10: updated to 10.18.1 2020-01-24 18:57:09 +00:00