diff options
| author | Rod Vagg <rod@vagg.org> | 2016-06-23 16:46:05 +0300 |
|---|---|---|
| committer | Rod Vagg <rod@vagg.org> | 2016-06-23 19:46:33 +0300 |
| commit | 2bd9dabf798fb7e00f6bbdfa0f68e6da211d22cb (patch) | |
| tree | 41c429f258670033410e6b562e7e55af2ea4398b | |
| parent | da8501edf647f4cf6c4f86e95cb0a2c2a50bd7db (diff) | |
2016-06-23 Version 0.12.15 (Maintenance) Releasev0.12.15
This is a security release. All Node.js users should consult the security
release summary at
https://nodejs.org/en/blog/vulnerability/june-2016-security-releases/ for
details on patched vulnerabilities.
Notable changes:
* libuv: (CVE-2014-9748) Fixes a bug in the read/write locks implementation for
Windows XP and Windows 2003 that can lead to undefined and potentially unsafe
behaviour. More information can be found at
https://github.com/libuv/libuv/issues/515 or at
https://nodejs.org/en/blog/vulnerability/june-2016-security-releases/.
* V8: (CVE-2016-1669) Fixes a potential Buffer overflow vulnerability
discovered in V8, more details can be found in the CVE at
https://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1669 or at
https://nodejs.org/en/blog/vulnerability/june-2016-security-releases/.
PR-URL: https://github.com/nodejs/node-private/pull/53
| -rw-r--r-- | ChangeLog | 19 | ||||
| -rw-r--r-- | src/node_version.h | 2 |
2 files changed, 20 insertions, 1 deletions
diff --git a/ChangeLog b/ChangeLog index 336c262c815..e4f1551a66f 100644 --- a/ChangeLog +++ b/ChangeLog @@ -1,3 +1,22 @@ +2016-06-23, Version 0.12.15 (Maintenance), @rvagg + +Notable changes: + +This is a security release. All Node.js users should consult the security release summary at https://nodejs.org/en/blog/vulnerability/june-2016-security-releases/ for details on patched vulnerabilities. + +* libuv: (CVE-2014-9748) Fixes a bug in the read/write locks implementation for Windows XP and Windows 2003 that can lead to undefined and potentially unsafe behaviour. More information can be found at https://github.com/libuv/libuv/issues/515 or at https://nodejs.org/en/blog/vulnerability/june-2016-security-releases/. +* V8: (CVE-2016-1669) Fixes a potential Buffer overflow vulnerability discovered in V8, more details can be found in the CVE at https://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1669 or at https://nodejs.org/en/blog/vulnerability/june-2016-security-releases/. + +Commits: + +* [da8501edf6] - deps: backport bd1777fd from libuv upstream (Rod Vagg) +* [9207a00f8e] - deps: backport 85adf43e from libuv upstream (Rod Vagg) +* [9627f34230] - deps: backport 98239224 from libuv upstream (Rod Vagg) +* [5df21b2e36] - deps: backport 9a4fd268 from libuv upstream (Rod Vagg) +* [e75de35057] - deps: backport 3eb6764a from libuv upstream (Rod Vagg) +* [a113e02f16] - deps: backport 3a9bfec from v8 upstream (Ben Noordhuis) +* [8138055c88] - test: fix test failure due to expired certificates (Ben Noordhuis) https://github.com/nodejs/node/pull/7195 + 2016-05-06, Version 0.12.14 (Maintenance), @rvagg Notable changes: diff --git a/src/node_version.h b/src/node_version.h index d181f486388..59b63ae6907 100644 --- a/src/node_version.h +++ b/src/node_version.h @@ -26,7 +26,7 @@ #define NODE_MINOR_VERSION 12 #define NODE_PATCH_VERSION 15 -#define NODE_VERSION_IS_RELEASE 0 +#define NODE_VERSION_IS_RELEASE 1 #ifndef NODE_STRINGIFY #define NODE_STRINGIFY(n) NODE_STRINGIFY_HELPER(n) |