Welcome to mirror list, hosted at ThFree Co, Russian Federation.

github.com/nodejs/node.git - Unnamed repository; edit this file 'description' to name the repository.
summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorBeth Griggs <bethanyngriggs@gmail.com>2022-11-01 23:17:16 +0300
committerBeth Griggs <bethanyngriggs@gmail.com>2022-11-04 19:12:57 +0300
commit7a14550e7c7bdf9de66c73dce5c14e880ad6e13f (patch)
treecbdbea14027c7960d2a48ede20891e8fd704f39d
parent1af63a90ca3a59ca05b3a12ad7dbea04008db7d9 (diff)
2022-11-04, Version 14.21.1 'Fermium' (LTS)
This is a security release. Notable changes: The following CVEs are fixed in this release: - CVE-2022-43548: DNS rebinding in --inspect via invalid octal IP address (Medium) PR-URL: https://github.com/nodejs-private/node-private/pull/362
Diffstat
-rw-r--r--CHANGELOG.md3
-rw-r--r--doc/changelogs/CHANGELOG_V14.md19
2 files changed, 21 insertions, 1 deletions
diff --git a/CHANGELOG.md b/CHANGELOG.md
index 6cb9179a9a0..41cdb8ac4b1 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -86,7 +86,8 @@ release.
<a href="doc/changelogs/CHANGELOG_V16.md#16.0.0">16.0.0</a><br/>
</td>
<td valign="top">
-<b><a href="doc/changelogs/CHANGELOG_V14.md#14.21.0">14.21.0</a></b><br/>
+<b><a href="doc/changelogs/CHANGELOG_V14.md#14.21.1">14.21.1</a></b><br/>
+<a href="doc/changelogs/CHANGELOG_V14.md#14.21.0">14.21.0</a><br/>
<a href="doc/changelogs/CHANGELOG_V14.md#14.20.1">14.20.1</a><br/>
<a href="doc/changelogs/CHANGELOG_V14.md#14.20.0">14.20.0</a><br/>
<a href="doc/changelogs/CHANGELOG_V14.md#14.19.3">14.19.3</a><br/>
diff --git a/doc/changelogs/CHANGELOG_V14.md b/doc/changelogs/CHANGELOG_V14.md
index eb7e9c8518d..e06a10165f4 100644
--- a/doc/changelogs/CHANGELOG_V14.md
+++ b/doc/changelogs/CHANGELOG_V14.md
@@ -9,6 +9,7 @@
</tr>
<tr>
<td valign="top">
+<a href="#14.21.1">14.21.1</a><br/>
<a href="#14.21.0">14.21.0</a><br/>
<a href="#14.20.1">14.20.1</a><br/>
<a href="#14.20.0">14.20.0</a><br/>
@@ -79,6 +80,24 @@
* [io.js](CHANGELOG_IOJS.md)
* [Archive](CHANGELOG_ARCHIVE.md)
+<a id="14.21.1"></a>
+
+## 2022-11-04, Version 14.21.1 'Fermium' (LTS), @BethGriggs
+
+This is a security release.
+
+### Notable changes
+
+The following CVEs are fixed in this release:
+
+* **[CVE-2022-43548](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-43548)**: DNS rebinding in --inspect via invalid octal IP address (Medium)
+
+More detailed information on each of the vulnerabilities can be found in [November 2022 Security Releases](https://nodejs.org/en/blog/vulnerability/november-2022-security-releases/) blog post.
+
+### Commits
+
+* \[[`2b433af094`](https://github.com/nodejs/node/commit/2b433af094)] - **inspector**: harden IP address validation again (Tobias Nießen) [nodejs-private/node-private#354](https://github.com/nodejs-private/node-private/pull/354)
+
<a id="14.21.0"></a>
## 2022-11-01, Version 14.21.0 'Fermium' (LTS), @danielleadams
generated by cgit v1.2.3 (git 2.25.1) at 2024-07-12 04:44:53 +0300