2
0
forked from pool/nodejs21
Go to file
Adam Majer 3dd84fa6f5 - Update to 21.6.2: (security updates)
* (CVE-2024-21892, bsc#1219992) - Code injection and privilege escalation through Linux capabilities- (High)
  * (CVE-2024-22019, bsc#1219993) - http: Reading unprocessed HTTP request with unbounded chunk extension allows DoS attacks- (High)
  * (CVE-2024-21896, bsc#1219994) - Path traversal by monkey-patching Buffer internals- (High)
  * (CVE-2024-22017, bsc#1219995) - setuid() does not drop all privileges due to io_uring - (High)
  * (CVE-2023-46809, bsc#1219997) - Node.js is vulnerable to the Marvin Attack (timing variant of the Bleichenbacher attack against PKCS#1 v1.5 padding) - (Medium)
  * (CVE-2024-21891, bsc#1219998) - Multiple permission model bypasses due to improper path traversal sequence sanitization - (Medium)
  * (CVE-2024-21890, bsc#1219999) - Improper handling of wildcards in --allow-fs-read and --allow-fs-write (Medium)
  * (CVE-2024-22025, bsc#1220014) - Denial of Service by resource exhaustion in fetch() brotli decoding - (Medium)
  * undici version 5.28.3 (CVE-2024-24758, bsc#1220017)
  * libuv version 1.48.0

OBS-URL: https://build.opensuse.org/package/show/devel:languages:nodejs/nodejs21?expand=0&rev=19
2024-02-16 16:23:48 +00:00
_constraints - Package new version 21.1.0 2023-11-07 09:48:41 +00:00
.gitattributes - Package new version 21.1.0 2023-11-07 09:48:41 +00:00
.gitignore - Package new version 21.1.0 2023-11-07 09:48:41 +00:00
bash_output_helper.bash - Package new version 21.1.0 2023-11-07 09:48:41 +00:00
c-ares-fixes.patch - c-ares-fixes.patch: fixes unit tests for new c-ares 2024-01-02 14:28:38 +00:00
cares_public_headers.patch - Package new version 21.1.0 2023-11-07 09:48:41 +00:00
fix_ci_tests.patch OBS-URL: https://build.opensuse.org/package/show/devel:languages:nodejs/nodejs21?expand=0&rev=17 2024-02-13 12:35:48 +00:00
flaky_test_rerun.patch - Package new version 21.1.0 2023-11-07 09:48:41 +00:00
gcc13.patch - Package new version 21.1.0 2023-11-07 09:48:41 +00:00
legacy_python.patch - Package new version 21.1.0 2023-11-07 09:48:41 +00:00
linker_lto_jobs.patch - Update to 21.5.0: 2024-01-08 15:10:14 +00:00
manual_configure.patch - Package new version 21.1.0 2023-11-07 09:48:41 +00:00
node_modules.tar.xz - Package new version 21.1.0 2023-11-07 09:48:41 +00:00
node-gyp_7.1.2.tar.xz OBS-URL: https://build.opensuse.org/package/show/devel:languages:nodejs/nodejs21?expand=0&rev=3 2023-11-07 15:18:56 +00:00
node-gyp-addon-gypi.patch - node-gyp-addon-gypi.patch: fix misapplied patch (bsc#1217424) 2023-11-23 10:50:30 +00:00
node-gyp-config.patch - Package new version 21.1.0 2023-11-07 09:48:41 +00:00
node-v21.6.2.tar.xz - Update to 21.6.2: (security updates) 2024-02-16 16:23:48 +00:00
nodejs21.changes - Update to 21.6.2: (security updates) 2024-02-16 16:23:48 +00:00
nodejs21.spec - Update to 21.6.2: (security updates) 2024-02-16 16:23:48 +00:00
nodejs-libpath.patch - Package new version 21.1.0 2023-11-07 09:48:41 +00:00
nodejs.keyring - Package new version 21.1.0 2023-11-07 09:48:41 +00:00
npm_search_paths.patch - Package new version 21.1.0 2023-11-07 09:48:41 +00:00
openssl_binary_detection.patch - Package new version 21.1.0 2023-11-07 09:48:41 +00:00
qemu_timeouts_arches.patch - Package new version 21.1.0 2023-11-07 09:48:41 +00:00
SHASUMS256.txt - Update to 21.6.2: (security updates) 2024-02-16 16:23:48 +00:00
SHASUMS256.txt.sig - Update to 21.6.2: (security updates) 2024-02-16 16:23:48 +00:00
skip_no_console.patch - Package new version 21.1.0 2023-11-07 09:48:41 +00:00
sle12_python3_compat.patch - Package new version 21.1.0 2023-11-07 09:48:41 +00:00
test-skip-y2038-on-32bit-time_t.patch - Package new version 21.1.0 2023-11-07 09:48:41 +00:00
update_npm_tarball.sh - Package new version 21.1.0 2023-11-07 09:48:41 +00:00
versioned.patch OBS-URL: https://build.opensuse.org/package/show/devel:languages:nodejs/nodejs21?expand=0&rev=2 2023-11-07 13:27:58 +00:00