nodejs 18.13.0+dfsg1-1.1ubuntu1 source package in Ubuntu
Changelog
nodejs (18.13.0+dfsg1-1.1ubuntu1) noble; urgency=low
* Merge from Debian unstable. Remaining changes:
- Use gold linker on arm64 to fix a link failure
- Still use Ubuntu openssl patch and approach, the Debian one
makes testsuite fail.
- Fix offset by one in one new test
nodejs (18.13.0+dfsg1-1.1) unstable; urgency=medium
* Non-maintainer upload.
* Adapt testsuite failures in test-crypto-dh since OpenSSL 3.0.12/3.1.4
(Closes: #1055416).
* Adapt testsuite failures due TLSv < 1.1 available only at seclevel 0
(Closes: #1052470).
* CVE-2023-23919 (Node.js OpenSSL error handling issues in nodejs crypto
library). (Closes: #1031834).
* CVE-2023-23920 (Node.js insecure loading of ICU data through ICU_DATA
environment variable) (Closes: #1031834).
* CVE-2023-30590 (DiffieHellman do not generate keys after setting a private
key) (Closes: #1039990).
* CVE-2023-30589 (HTTP Request Smuggling via Empty headers separated by CR)
(Closes: #1039990).
* CVE-2023-30588 (Process interuption due to invalid Public Key information
in x509 certificates) (Closes: #1039990).
* CVE-2023-32559 (Permissions policies can be bypassed via process.binding)
(Closes: #1050739).
* CVE-2023-30581 (mainModule.proto bypass experimental policy mechanism)
(Closes: #1039990).
* CVE-2023-32002 (Permissions policies can be bypassed via Module._load)
(Closes: #1050739).
* CVE-2023-32006 (Permissions policies can impersonate other modules in
using module.constructor.createRequire()) (Closes: #1050739).
* CVE-2023-38552 (Integrity checks according to policies can be
circumvented) (Closes: #1054892).
* CVE-2023-39333 (Code injection via WebAssembly export names)
(Closes: #1054892).
-- Gianfranco Costamagna <email address hidden> Thu, 23 Nov 2023 10:00:47 +0100
Upload details
- Uploaded by:
- Gianfranco Costamagna
- Uploaded to:
- Noble
- Original maintainer:
- Ubuntu Developers
- Architectures:
- amd64 arm64 armel armhf i386 kfreebsd-i386 kfreebsd-amd64 mips mips64el mips64r6el mipsel powerpc ppc64 ppc64el riscv64 s390x all
- Section:
- web
- Urgency:
- Medium Urgency
See full publishing history Publishing
| Series | Published | Component | Section |
|---|
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| nodejs_18.13.0+dfsg1.orig-types-node.tar.xz | 247.6 KiB | 3b6dcdfc5167c6d78c10844fa3f30e6eb6b58b64b674e2795533b2d2bcd366a4 |
| nodejs_18.13.0+dfsg1.orig.tar.xz | 24.5 MiB | 570ad29f0f06ba743a9609d767b61a45293a233497f7417265cce4b49247a4d2 |
| nodejs_18.13.0+dfsg1-1.1ubuntu1.debian.tar.xz | 192.5 KiB | a8176c729466b1c342a0bf7817a13b91d11753adfffdaeabd0f22173fc57d587 |
| nodejs_18.13.0+dfsg1-1.1ubuntu1.dsc | 4.1 KiB | 7517c96c0c43b6a25e6ce041535955ec6552846450d84468516c865bd1633a45 |
Available diffs
Binary packages built by this source
- libnode-dev: evented I/O for V8 javascript (development files)
Node.js is a platform built on Chrome's JavaScript runtime for easily
building fast, scalable network applications. Node.js uses an
event-driven, non-blocking I/O model that makes it lightweight and
efficient, perfect for data-intensive real-time applications that run
across distributed devices.
.
This package provides development headers for libnode109.
- libnode108: No summary available for libnode108 in ubuntu noble.
No description available for libnode108 in ubuntu noble.
- libnode108-dbgsym: No summary available for libnode108-dbgsym in ubuntu noble.
No description available for libnode108-dbgsym in ubuntu noble.
- nodejs: evented I/O for V8 javascript - runtime executable
Node.js is a platform built on Chrome's JavaScript runtime for easily
building fast, scalable network applications. Node.js uses an
event-driven, non-blocking I/O model that makes it lightweight and
efficient, perfect for data-intensive real-time applications that run
across distributed devices.
.
Node.js is bundled with several useful libraries to handle server
tasks:
.
System, Events, Standard I/O, Modules, Timers, Child Processes, POSIX,
HTTP, Multipart Parsing, TCP, DNS, Assert, Path, URL, Query Strings.
- nodejs-dbgsym: debug symbols for nodejs
