Page MenuHomeFreeBSD
Differential D36694

www/node: Update to 18.10.0
AbandonedPublic
Actions

Authored by otis on Sep 25 2022, 7:39 AM.
Tags
None
Referenced Files
Unknown Object (File)
Feb 16 2024, 11:36 AM
Unknown Object (File)
Jan 12 2024, 3:20 AM
Unknown Object (File)
Dec 20 2023, 5:11 AM
Unknown Object (File)
Dec 1 2023, 4:14 AM
Unknown Object (File)
Oct 8 2023, 10:19 AM
Unknown Object (File)
Jun 21 2023, 11:24 PM
Unknown Object (File)
May 3 2023, 1:19 PM
Unknown Object (File)
Feb 28 2023, 5:17 PM
View All 15 Files
Subscribers
dereks_lifeofadishwasher.com
mat
Contributor Reviewers (ports)

Details

Reviewers
bhughes
lattera-gmail.com
Group Reviewers
portmgr
ports secteam
Summary

Changelog:
https://github.com/nodejs/node/releases/tag/v18.10.0

The following CVEs are fixed (as part of 18.9.1):

CVE-2022-32212:
DNS rebinding in --inspect on macOS Insufficient fix for macOS devices on v18.5.0

CVE-2022-32222:
Node 18 reads openssl.cnf from /home/iojs/build/ upon startup on MacOS

CVE-2022-32213:
HTTP Request Smuggling - Flawed Parsing of Transfer-Encoding

CVE-2022-32215: HTTP Request Smuggling - Incorrect Parsing of Multi-line
Transfer-Encoding

CVE-2022-35256: HTTP Request Smuggling - Incorrect Parsing of Header
Fields

CVE-2022-35255:
Weak randomness in WebCrypto keygen

Diff Detail

Repository
rP FreeBSD ports repository
Lint
No Lint Coverage
Unit
No Test Coverage
Build Status
Buildable 47753
Build 44640: arc lint + arc unit

Revision Contents
Changeset List

PathSize
www/
node/
5 lines
6 lines
1 line

Diff 111590

View Options

www/node/Makefile

Loading...
View Options

www/node/distinfo

Loading...
View Options

www/node/pkg-plist

Loading...