summary |
shortlog | log |
commit |
commitdiff |
tree
first ⋅ prev ⋅ next
Jérémy Lal [Tue, 24 Mar 2026 21:11:25 +0000 (22:11 +0100)]
keep nodejs compatible with libc-ares public headers
Forwarded: not-needed
Last-Update: 2021-10-20
Gbp-Pq: Topic deps
Gbp-Pq: Name cares.patch
Jérémy Lal [Tue, 24 Mar 2026 21:11:25 +0000 (22:11 +0100)]
adapt tools/test.py
Forwarded: not-needed
Reviewed-By: Xavier Guimard <yadd@debian.org>
Last-Update: 2025-02-12
* log to stdout
* increase timeout multipliers
* rename --flaky-tests to --flaky-tests-mode and use --flaky-tests like --skip-tests
Gbp-Pq: Topic build
Gbp-Pq: Name test_ci.patch
Jérémy Lal [Tue, 24 Mar 2026 21:11:25 +0000 (22:11 +0100)]
Link to -latomic by default
Last-Update: 2019-10-25
Forwarded: not-needed
Bug: https://github.com/nodejs/node/pull/28532
Bug: https://github.com/nodejs/node/issues/30093
This avoids surprises on mips*el/ppc*el
Gbp-Pq: Topic build
Gbp-Pq: Name flag_atomic.patch
Jérémy Lal [Tue, 24 Mar 2026 21:11:25 +0000 (22:11 +0100)]
build doc using marked and js-yaml
Forwarded: not-needed
Reviewed-By: Xavier Guimard <yadd@debian.org>
Last-Update: 2021-03-03
While waiting for unified/remarked/rehyped modules to be available in debian
Gbp-Pq: Topic build
Gbp-Pq: Name doc.patch
Jérémy Lal [Tue, 24 Mar 2026 21:11:25 +0000 (22:11 +0100)]
disable shared builtins when loading deps on demand
Last-Update: 2023-12-10
Forwarded: no, todo
This is to avoid preloading potentially missing files.
Gbp-Pq: Topic build
Gbp-Pq: Name builtins_module_paths_not_shareable.patch
Jérémy Lal [Tue, 24 Mar 2026 21:11:25 +0000 (22:11 +0100)]
add acorn, walk to shared builtins
Last-Update: 2022-09-28
Forwarded: https://github.com/nodejs/node/pull/44376
Gbp-Pq: Topic build
Gbp-Pq: Name more_shareable_builtins.patch
Jérémy Lal [Tue, 24 Mar 2026 21:11:25 +0000 (22:11 +0100)]
nodejs (20.19.2+dfsg-1+deb13u2) trixie-security; urgency=medium
* Upstream security patches:
+ CVE-2026-21713: use timing-safe comparison in Web Cryptography HMAC
+ CVE-2026-21717: fix array index hash collision
+ CVE-2026-21710: http: use null prototype for headersDistinct/trailersDistinct
+ CVE-2026-21716: include permission check on lib/fs/promises
+ CVE-2026-21715: add permission check to realpath.native
+ CVE-2026-21714: handle NGHTTP2_ERR_FLOW_CONTROL error code
+ CVE-2026-21637: tls wrap SNICallback invocation in try/catch
* copyright: add rapidhash from sec/51 patch
[dgit import unpatched nodejs 20.19.2+dfsg-1+deb13u2]
Jérémy Lal [Tue, 24 Mar 2026 21:11:25 +0000 (22:11 +0100)]
Import nodejs_20.19.2+dfsg-1+deb13u2.debian.tar.xz
[dgit import tarball nodejs 20.19.2+dfsg-1+deb13u2 nodejs_20.19.2+dfsg-1+deb13u2.debian.tar.xz]
Jérémy Lal [Wed, 14 May 2025 21:43:31 +0000 (23:43 +0200)]
Import nodejs_20.19.2+dfsg.orig.tar.xz
[dgit import orig nodejs_20.19.2+dfsg.orig.tar.xz]
Jérémy Lal [Wed, 14 May 2025 21:43:31 +0000 (23:43 +0200)]
Import nodejs_20.19.2+dfsg.orig-ada.tar.xz
[dgit import orig nodejs_20.19.2+dfsg.orig-ada.tar.xz]
Jérémy Lal [Wed, 14 May 2025 21:43:31 +0000 (23:43 +0200)]
Import nodejs_20.19.2+dfsg.orig-types-node.tar.xz
[dgit import orig nodejs_20.19.2+dfsg.orig-types-node.tar.xz]
projects / nodejs.git / log