Volker Schlecht <openbsd-ports@schlecht.dev> writes:
> Hi,
>
> the attached patch updates lang/node to 12.22.7, fixing
>
> CVE-2021-22959
> CVE-2021-22960
> https://nodejs.org/en/blog/vulnerability/oct-2021-security-releases/
>
> The update affects only their http parser.
>
> OK?
Tested by building some navidrome resources, works for that just fine!
OK abieber@ if someone wants to commit it.
>
> regards,
> Volker
>
> [2. text/x-patch; node-12.22.7.diff]...
No comments:
Post a Comment