Page MenuHomeFreeBSD
Differential D36692

www/node16: Update to 16.17.1
ClosedPublic
Actions

Authored by otis on Sep 25 2022, 5:57 AM.
Tags
None
Referenced Files
F132659847: D36692.id111841.diff
Sat, Oct 18, 8:23 PM
Unknown Object (File)
Sun, Oct 12, 2:24 PM
Unknown Object (File)
Fri, Oct 3, 4:20 PM
Unknown Object (File)
Wed, Oct 1, 11:24 AM
Unknown Object (File)
Tue, Sep 30, 8:11 PM
Unknown Object (File)
Sun, Sep 21, 7:25 AM
Unknown Object (File)
Fri, Sep 19, 11:58 PM
Unknown Object (File)
Sep 5 2025, 10:15 PM
View All Files
Subscribers
bhughes
dereks_lifeofadishwasher.com
mat
Contributor Reviewers (ports)

Details

Reviewers
bhughes
lattera-gmail.com
Group Reviewers
portmgr
ports secteam
Commits
R11:2bedef22cc3e: www/node16: Security update to 16.17.1
Summary

Changelog: https://github.com/nodejs/node/releases/tag/v16.17.1

The following CVEs are fixed in this release:

CVE-2022-32212: DNS rebinding in --inspect on macOS
CVE-2022-32213: bypass via obs-fold mechanic
CVE-2022-35255: Weak randomness in WebCrypto keygen
CVE-2022-35256: HTTP Request Smuggling - Incorrect Parsing of Header Fields

Diff Detail

Repository
R11 FreeBSD ports repository
Lint
Lint Not Applicable
Unit
Tests Not Applicable

Event Timeline

otis created this revision.Sep 25 2022, 5:57 AM
Herald added subscribers: Contributor Reviewers (ports), mat. · View Herald TranscriptSep 25 2022, 5:57 AM
otis requested review of this revision.Sep 25 2022, 5:57 AM
Harbormaster completed remote builds in B47519: Diff 110935.Sep 25 2022, 5:57 AM
otis added reviewers: bhughes, lattera-gmail.com, portmgr, ports secteam.Sep 25 2022, 7:43 AM
otis added a subscriber: bhughes.

Adding relevant reviewers.

@bhughes is not responding in a timely manner and we need to do these updates sooner than after eventual maintainer timeout.

dereks_lifeofadishwasher.com added a subscriber: dereks_lifeofadishwasher.com.Sep 27 2022, 11:43 PM
This revision was not accepted when it landed; it landed in state Needs Review.Oct 16 2022, 4:20 PM
Closed by commit R11:2bedef22cc3e: www/node16: Security update to 16.17.1 (authored by otis, committed by mfechner). · Explain Why
This revision was automatically updated to reflect the committed changes.
mfechner added a commit: R11:2bedef22cc3e: www/node16: Security update to 16.17.1.

Revision Contents
Changeset List

PathSize
www/
node16/
4 lines
6 lines
5 lines

Diff 111841

View Options

www/node16/Makefile

Loading...
View Options

www/node16/distinfo

Loading...
View Options

www/node16/pkg-plist

Loading...