Package node: Information
Default inline alert: Version in the repository: 20.12.1-alt1
Source package: node
Version: 16.19.1-alt1
Build time: Mar 14, 2023, 12:20 AM in the task #316726
Category: Development/Tools
Report package bugHome page: http://nodejs.org/
License: MIT
Summary: Evented I/O for V8 Javascript
Description:
Node.js is a server-side JavaScript environment that uses an asynchronous event-driven model. Node's goal is to provide an easy way to build scalable network programs.
List of rpms provided by this srpm:
node (x86_64, ppc64le, i586, armh, aarch64)
node-debuginfo (x86_64, ppc64le, i586, armh, aarch64)
node-devel (x86_64, ppc64le, i586, armh, aarch64)
node-doc (noarch)
node (x86_64, ppc64le, i586, armh, aarch64)
node-debuginfo (x86_64, ppc64le, i586, armh, aarch64)
node-devel (x86_64, ppc64le, i586, armh, aarch64)
node-doc (noarch)
Maintainer: Vitaly Lipatov
List of contributors:
Vitaly Lipatov
Alexey Shabalin
Pavel Skrylev
Dmitriy Kulik
Mikhail Pokidko
Vitaly Kuznetsov
Vitaly Lipatov
Alexey Shabalin
Pavel Skrylev
Dmitriy Kulik
Mikhail Pokidko
Vitaly Kuznetsov
Last changed
March 13, 2023 Vitaly Lipatov 16.19.1-alt1
- new version 16.19.1 (with rpmrb script) - CVE-2023-23918: Node.js Permissions policies can be bypassed via process.mainModule (High) - CVE-2023-23919: Node.js OpenSSL error handling issues in nodejs crypto library (Medium) - CVE-2023-23920: Node.js insecure loading of ICU data through ICU\_DATA environment variable (Low) - CVE-2023-23936: Fetch API in Node.js did not protect against CRLF injection in host headers (Medium) - CVE-2023-24807: Regular Expression Denial of Service in Headers in Node.js fetch API (Low) - set openssl >= 1.1.1s - set npm >= 8.19.3
Nov. 23, 2022 Vitaly Lipatov 16.18.1-alt1
- new version 16.18.1 (with rpmrb script) - CVE-2022-43548: DNS rebinding in --inspect via invalid octal IP address (Medium)
Oct. 16, 2022 Vitaly Lipatov 16.18.0-alt1
- new version 16.18.0 (with rpmrb script) - set npm >= 8.19.2