projects / nodejs.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(merge: 6f11c1a 279e9c0 4830738 6b56e3f)
nodejs (18.20.4+dfsg-1~deb12u1) bookworm-security; urgency=medium
authorJérémy Lal <kapouer@melix.org>
Tue, 9 Jul 2024 15:36:33 +0000 (17:36 +0200)
committerJérémy Lal <kapouer@melix.org>
Tue, 9 Jul 2024 15:36:33 +0000 (17:36 +0200)
commite8df57373794904b1ff58af09c1cd4c9b6390d52
tree82e71905de04ff44eca1538615603e0ce11ffffdtree | snapshot
parent6f11c1aa5fdd972326258d2c1f8d037cf066a74bcommit | diff
parent279e9c01468cdbb97c36c2ba9d3308f27c3e8eaccommit | diff
parent4830738e5e04b677217b99a631dec54c87339873commit | diff
parent6b56e3f789d9973fb29924c6206fdec2ae86aadfcommit | diff
nodejs (18.20.4+dfsg-1~deb12u1) bookworm-security; urgency=medium

  * New upstream version 18.20.4+dfsg. Closes: #1074047.
  * M.U.T.: bump ada to 2.7.8, keep node-types to 18.18.14
    for compatibility with other packages.
  * test-runner-output is flaky on slow platforms
  * Disable test-cluster-primary-* flaky/hanging tests.
  * Fix test failing with openssl 3.0.14. Closes: #1086652.
  * CVE-2024-22020: Bypass network import restriction via data URL (Medium)
  * CVE-2024-36138: Bypass incomplete fix of CVE-2024-27980 (High)
  * CVE-2024-27983: Assertion failed in node::http2::Http2Session::~Http2Session()
    leads to HTTP/2 server crash (High)
  * CVE-2024-27982: HTTP Request Smuggling via Content Length Obfuscation (Medium)
  * CVE-2024-22025: Denial of Service by resource exhaustion in fetch()
    brotli decoding (Medium)
  * CVE-2024-21892: Code injection and privilege escalation
    through Linux capabilities (High)
  * CVE-2024-22019: Reading unprocessed HTTP request with
    unbounded chunk extension allows DoS attacks (High)
  * CVE-2023-46809: Node.js is vulnerable to the Marvin Attack (Medium)
  * Static link on 32bits architecture libuv. Closes: #922075, #1076350.
    Thanks to Bastien Roucariès.

[dgit import unpatched nodejs 18.20.4+dfsg-1~deb12u1]
367 files changed:
ada/.clang-format | | | | blob
ada/.editorconfig | | | | blob
ada/.github/ISSUE_TEMPLATE/1-bug-report.yml | | | | blob
ada/.github/ISSUE_TEMPLATE/2-feature-request.yml | | | | blob
ada/.github/ISSUE_TEMPLATE/config.yml | | | | blob
ada/.github/dependabot.yml | | | | blob
ada/.github/workflows/alpine.yml | | | | blob
ada/.github/workflows/cifuzz.yml | | | | blob
ada/.github/workflows/codeql.yml | | | | blob
ada/.github/workflows/dependency-review.yml | | | | blob
ada/.github/workflows/documentation.yml | | | | blob
ada/.github/workflows/emscripten.yml | | | | blob
ada/.github/workflows/lint_and_format_check.yml | | | | blob
ada/.github/workflows/macos_install.yml | | | | blob
ada/.github/workflows/release-script-tests.yml | | | | blob
ada/.github/workflows/release_create.yml | | | | blob
ada/.github/workflows/release_prepare.yml | | | | blob
ada/.github/workflows/scorecard.yml | | | | blob
ada/.github/workflows/ubuntu-release.yml | | | | blob
ada/.github/workflows/ubuntu-s390x.yml | | | | blob
ada/.github/workflows/ubuntu-sanitized.yml | | | | blob
ada/.github/workflows/ubuntu-undef.yml | | | | blob
ada/.github/workflows/ubuntu.yml | | | | blob
ada/.github/workflows/ubuntu_install.yml | | | | blob
ada/.github/workflows/ubuntu_old.yml | | | | blob
ada/.github/workflows/ubuntu_pedantic.yml | | | | blob
ada/.github/workflows/visual_studio.yml | | | | blob
ada/.github/workflows/visual_studio_clang.yml | | | | blob
ada/.github/workflows/wpt-updater.yml | | | | blob
ada/.gitignore | | | | blob
ada/.python-version | | | | blob
ada/CMakeLists.txt | | | | blob
ada/Dockerfile | | | | blob
ada/LICENSE-APACHE | | | | blob
ada/LICENSE-MIT | | | | blob
ada/README.md | | | | blob
ada/SECURITY.md | | | | blob
ada/benchmarks/CMakeLists.txt | | | | blob
ada/benchmarks/bbc_bench.cpp | | | | blob
ada/benchmarks/bench.cpp | | | | blob
ada/benchmarks/bench_search_params.cpp | | | | blob
ada/benchmarks/benchmark_header.h | | | | blob
ada/benchmarks/benchmark_template.cpp | | | | blob
ada/benchmarks/competitors/servo-url/Cargo.lock | | | | blob
ada/benchmarks/competitors/servo-url/Cargo.toml | | | | blob
ada/benchmarks/competitors/servo-url/README.md | | | | blob
ada/benchmarks/competitors/servo-url/cbindgen.toml | | | | blob
ada/benchmarks/competitors/servo-url/lib.rs | | | | blob
ada/benchmarks/competitors/servo-url/servo_url.h | | | | blob
ada/benchmarks/model_bench.cpp | | | | blob
ada/benchmarks/percent_encode.cpp | | | | blob
ada/benchmarks/performancecounters/apple_arm_events.h | | | | blob
ada/benchmarks/performancecounters/event_counter.h | | | | blob
ada/benchmarks/performancecounters/linux-perf-events.h | | | | blob
ada/benchmarks/wpt_bench.cpp | | | | blob
ada/clang-format-ignore.txt | | | | blob
ada/cmake/CPM.cmake | | | | blob
ada/cmake/ada-config.cmake.in | | | | blob
ada/cmake/ada-flags.cmake | | | | blob
ada/cmake/add-cpp-test.cmake | | | | blob
ada/cmake/clang-format.cmake | | | | blob
ada/cmake/codecoverage.cmake | | | | blob
ada/docs/RELEASE.md | | | | blob
ada/docs/cli.md | | | | blob
ada/docs/doxygen/footer.html | | | | blob
ada/docs/doxygen/header.html | | | | blob
ada/doxygen | | | | blob
ada/fuzz/build.sh | | | | blob
ada/fuzz/parse.cc | | | | blob
ada/include/ada.h | | | | blob
ada/include/ada/ada_idna.h | | | | blob
ada/include/ada/ada_version.h | | | | blob
ada/include/ada/character_sets-inl.h | | | | blob
ada/include/ada/character_sets.h | | | | blob
ada/include/ada/checkers-inl.h | | | | blob
ada/include/ada/checkers.h | | | | blob
ada/include/ada/common_defs.h | | | | blob
ada/include/ada/encoding_type.h | | | | blob
ada/include/ada/expected.h | | | | blob
ada/include/ada/helpers.h | | | | blob
ada/include/ada/implementation.h | | | | blob
ada/include/ada/log.h | | | | blob
ada/include/ada/parser.h | | | | blob
ada/include/ada/scheme-inl.h | | | | blob
ada/include/ada/scheme.h | | | | blob
ada/include/ada/serializers.h | | | | blob
ada/include/ada/state.h | | | | blob
ada/include/ada/unicode-inl.h | | | | blob
ada/include/ada/unicode.h | | | | blob
ada/include/ada/url-inl.h | | | | blob
ada/include/ada/url.h | | | | blob
ada/include/ada/url_aggregator-inl.h | | | | blob
ada/include/ada/url_aggregator.h | | | | blob
ada/include/ada/url_base-inl.h | | | | blob
ada/include/ada/url_base.h | | | | blob
ada/include/ada/url_components.h | | | | blob
ada/include/ada/url_search_params-inl.h | | | | blob
ada/include/ada/url_search_params.h | | | | blob
ada/include/ada_c.h | | | | blob
ada/pyproject.toml | | | | blob
ada/singleheader/CMakeLists.txt | | | | blob
ada/singleheader/README.md | | | | blob
ada/singleheader/amalgamate.py | | | | blob
ada/singleheader/demo.c | | | | blob
ada/singleheader/demo.cpp | | | | blob
ada/src/CMakeLists.txt | | | | blob
ada/src/ada.cpp | | | | blob
ada/src/ada_c.cpp | | | | blob
ada/src/ada_idna.cpp | | | | blob
ada/src/checkers.cpp | | | | blob
ada/src/helpers.cpp | | | | blob
ada/src/implementation.cpp | | | | blob
ada/src/parser.cpp | | | | blob
ada/src/serializers.cpp | | | | blob
ada/src/unicode.cpp | | | | blob
ada/src/url-getters.cpp | | | | blob
ada/src/url-setters.cpp | | | | blob
ada/src/url.cpp | | | | blob
ada/src/url_aggregator.cpp | | | | blob
ada/src/url_components.cpp | | | | blob
ada/tests/CMakeLists.txt | | | | blob
ada/tests/ada_c.cpp | | | | blob
ada/tests/basic_fuzzer.cpp | | | | blob
ada/tests/basic_tests.cpp | | | | blob
ada/tests/from_file_tests.cpp | | | | blob
ada/tests/installation/CMakeLists.txt | | | | blob
ada/tests/url_components.cpp | | | | blob
ada/tests/url_search_params.cpp | | | | blob
ada/tests/wasm/CMakeLists.txt | | | | blob
ada/tests/wasm/test.js.in | | | | blob
ada/tests/wasm/wasm.cpp | | | | blob
ada/tests/wpt/CMakeLists.txt | | | | blob
ada/tests/wpt/IdnaTestV2.json | | | | blob
ada/tests/wpt/ada_extra_setters_tests.json | | | | blob
ada/tests/wpt/ada_extra_urltestdata.json | | | | blob
ada/tests/wpt/ada_long_urltestdata.json | | | | blob
ada/tests/wpt/percent-encoding.json | | | | blob
ada/tests/wpt/setters_tests.json | | | | blob
ada/tests/wpt/toascii.json | | | | blob
ada/tests/wpt/urltestdata.json | | | | blob
ada/tests/wpt/verifydnslength_tests.json | | | | blob
ada/tests/wpt_tests.cpp | | | | blob
ada/tools/CMakeLists.txt | | | | blob
ada/tools/cli/CMakeLists.txt | | | | blob
ada/tools/cli/adaparse.cpp | | | | blob
ada/tools/cli/benchmark_adaparse.sh | | | | blob
ada/tools/cli/benchmark_write_to_file.sh | | | | blob
ada/tools/cli/line_iterator.h | | | | blob
ada/tools/lint_and_format.py | | | | blob
ada/tools/prepare-doxygen.sh | | | | blob
ada/tools/release/__init__.py | | | | blob
ada/tools/release/create_release.py | | | | blob
ada/tools/release/lib/__init__.py | | | | blob
ada/tools/release/lib/release.py | | | | blob
ada/tools/release/lib/tests/__init__.py | | | | blob
ada/tools/release/lib/tests/samples/ada_version_h.txt | | | | blob
ada/tools/release/lib/tests/samples/ada_version_h_expected.txt | | | | blob
ada/tools/release/lib/tests/samples/cmakelists.txt | | | | blob
ada/tools/release/lib/tests/samples/cmakelists_expected.txt | | | | blob
ada/tools/release/lib/tests/samples/doxygen.txt | | | | blob
ada/tools/release/lib/tests/samples/doxygen_expected.txt | | | | blob
ada/tools/release/lib/tests/test_release.py | | | | blob
ada/tools/release/lib/tests/test_update_versions.py | | | | blob
ada/tools/release/lib/versions.py | | | | blob
ada/tools/release/requirements.txt | | | | blob
ada/tools/release/update_versions.py | | | | blob
ada/tools/run-clangcldocker.sh | | | | blob
ada/tools/update-wpt.sh | | | | blob
debian/README.source | | | | blob
debian/changelog | | | | blob
debian/control | | | | blob
debian/copyright | | | | blob
debian/copyright_hints | | | | blob
debian/doc-generator/LICENSE | | | | blob
debian/doc-generator/README.md | | | | blob
debian/doc-generator/addon-verify.mjs | | | | blob
debian/doc-generator/allhtml.mjs | | | | blob
debian/doc-generator/alljson.mjs | | | | blob
debian/doc-generator/apilinks.mjs | | | | blob
debian/doc-generator/checkLinks.mjs | | | | blob
debian/doc-generator/common.mjs | | | | blob
debian/doc-generator/generate.mjs | | | | blob
debian/doc-generator/html.mjs | | | | blob
debian/doc-generator/json.mjs | | | | blob
debian/doc-generator/links-mapper.json | | | | blob
debian/doc-generator/markdown.mjs | | | | blob
debian/doc-generator/package-lock.json | | | | blob
debian/doc-generator/package.json | | | | blob
debian/doc-generator/type-parser.mjs | | | | blob
debian/doc-generator/versions.mjs | | | | blob
debian/gbp.conf | | | | blob
debian/libnode-dev.dirs | | | | blob
debian/libnode-dev.install | | | | blob
debian/libnode-dev.links.in | | | | blob
debian/libnode.install | | | | blob
debian/node | | | | blob
debian/nodejs-doc.doc-base | | | | blob
debian/nodejs-doc.docs | | | | blob
debian/nodejs.README.Debian | | | | blob
debian/nodejs.dirs | | | | blob
debian/nodejs.install.in | | | | blob
debian/nodejs.links | | | | blob
debian/nodejs.manpages | | | | blob
debian/nodejs.pm | | | | blob
debian/nodejs.postinst | | | | blob
debian/nodejs.prerm | | | | blob
debian/patches/arm64/stacksize.patch | | | | blob
debian/patches/armel/configure.patch | | | | blob
debian/patches/build/ada.patch | | | | blob
debian/patches/build/cctest_disable.patch | | | | blob
debian/patches/build/disable_sea_dfsg_postject.patch | | | | blob
debian/patches/build/doc.patch | | | | blob
debian/patches/build/doc_template_home.html | | | | blob
debian/patches/build/flag_atomic.patch | | | | blob
debian/patches/build/getaddrinfo_no_iface.patch | | | | blob
debian/patches/build/icu72-test.patch | | | | blob
debian/patches/build/more_shareable_builtins.patch | | | | blob
debian/patches/build/openssl_3011_without_new_error_message.patch | | | | blob
debian/patches/build/openssl_3014.patch | | | | blob
debian/patches/build/openssl_config_explicit_lower.patch | | | | blob
debian/patches/build/shareable_builtins_PR44376.patch | | | | blob
debian/patches/build/skip-buffer-nan-internal-check.patch | | | | blob
debian/patches/build/test_ci.patch | | | | blob
debian/patches/build/test_process_versions.patch | | | | blob
debian/patches/build/test_runner_escape_path.patch | | | | blob
debian/patches/build/upstream_uv_test_socket_write_after_fin_error.patch | | | | blob
debian/patches/deps/cares.patch | | | | blob
debian/patches/deps/localhost-no-addrconfig.patch | | | | blob
debian/patches/deps/node_gyp.patch | | | | blob
debian/patches/dfsg/benchmark_without_alice.patch | | | | blob
debian/patches/dfsg/multilib_modules.patch | | | | blob
debian/patches/dfsg/privacy_breach.patch | | | | blob
debian/patches/libuv/0000-bookworm-sync.patch | | | | blob
debian/patches/libuv/disable_ipv6_test.patch | | | | blob
debian/patches/libuv/fix-cve-2024-24806 | | | | blob
debian/patches/libuv/iovec_rw_fix.patch | | | | blob
debian/patches/libuv/path_max_zero_st_size | | | | blob
debian/patches/libuv/skip-multicast-test | | | | blob
debian/patches/libuv/sparc-skip-tcp_oob.diff | | | | blob
debian/patches/mips/compilation_error.patch | | | | blob
debian/patches/mips/flaky_tests.patch | | | | blob
debian/patches/mips/fpu.patch | | | | blob
debian/patches/mips/less_mem.patch | | | | blob
debian/patches/mips/lock_free_32.patch | | | | blob
debian/patches/mips/mipsel_even_register_fix.patch | | | | blob
debian/patches/mips/mipsel_is_32.patch | | | | blob
debian/patches/riscv/disable_failing_tests.patch | | | | blob
debian/patches/riscv/flaky_tests.patch | | | | blob
debian/patches/series | | | | blob
debian/rules | | | | blob
debian/salsa-ci.yml | | | | blob
debian/source/format | | | | blob
debian/source/lintian-overrides | | | | blob
debian/tests/control | | | | blob
debian/upstream/metadata | | | | blob
debian/watch | | | | blob
types-node/LICENSE | | | | blob
types-node/README.md | | | | blob
types-node/assert.d.ts | | | | blob
types-node/assert/strict.d.ts | | | | blob
types-node/async_hooks.d.ts | | | | blob
types-node/buffer.d.ts | | | | blob
types-node/child_process.d.ts | | | | blob
types-node/cluster.d.ts | | | | blob
types-node/console.d.ts | | | | blob
types-node/constants.d.ts | | | | blob
types-node/crypto.d.ts | | | | blob
types-node/dgram.d.ts | | | | blob
types-node/diagnostics_channel.d.ts | | | | blob
types-node/dns.d.ts | | | | blob
types-node/dns/promises.d.ts | | | | blob
types-node/dom-events.d.ts | | | | blob
types-node/domain.d.ts | | | | blob
types-node/events.d.ts | | | | blob
types-node/fs.d.ts | | | | blob
types-node/fs/promises.d.ts | | | | blob
types-node/globals.d.ts | | | | blob
types-node/globals.global.d.ts | | | | blob
types-node/http.d.ts | | | | blob
types-node/http2.d.ts | | | | blob
types-node/https.d.ts | | | | blob
types-node/index.d.ts | | | | blob
types-node/inspector.d.ts | | | | blob
types-node/module.d.ts | | | | blob
types-node/net.d.ts | | | | blob
types-node/os.d.ts | | | | blob
types-node/package.json | | | | blob
types-node/path.d.ts | | | | blob
types-node/perf_hooks.d.ts | | | | blob
types-node/process.d.ts | | | | blob
types-node/punycode.d.ts | | | | blob
types-node/querystring.d.ts | | | | blob
types-node/readline.d.ts | | | | blob
types-node/readline/promises.d.ts | | | | blob
types-node/repl.d.ts | | | | blob
types-node/stream.d.ts | | | | blob
types-node/stream/consumers.d.ts | | | | blob
types-node/stream/promises.d.ts | | | | blob
types-node/stream/web.d.ts | | | | blob
types-node/string_decoder.d.ts | | | | blob
types-node/test.d.ts | | | | blob
types-node/timers.d.ts | | | | blob
types-node/timers/promises.d.ts | | | | blob
types-node/tls.d.ts | | | | blob
types-node/trace_events.d.ts | | | | blob
types-node/ts4.8/assert.d.ts | | | | blob
types-node/ts4.8/assert/strict.d.ts | | | | blob
types-node/ts4.8/async_hooks.d.ts | | | | blob
types-node/ts4.8/buffer.d.ts | | | | blob
types-node/ts4.8/child_process.d.ts | | | | blob
types-node/ts4.8/cluster.d.ts | | | | blob
types-node/ts4.8/console.d.ts | | | | blob
types-node/ts4.8/constants.d.ts | | | | blob
types-node/ts4.8/crypto.d.ts | | | | blob
types-node/ts4.8/dgram.d.ts | | | | blob
types-node/ts4.8/diagnostics_channel.d.ts | | | | blob
types-node/ts4.8/dns.d.ts | | | | blob
types-node/ts4.8/dns/promises.d.ts | | | | blob
types-node/ts4.8/dom-events.d.ts | | | | blob
types-node/ts4.8/domain.d.ts | | | | blob
types-node/ts4.8/events.d.ts | | | | blob
types-node/ts4.8/fs.d.ts | | | | blob
types-node/ts4.8/fs/promises.d.ts | | | | blob
types-node/ts4.8/globals.d.ts | | | | blob
types-node/ts4.8/globals.global.d.ts | | | | blob
types-node/ts4.8/http.d.ts | | | | blob
types-node/ts4.8/http2.d.ts | | | | blob
types-node/ts4.8/https.d.ts | | | | blob
types-node/ts4.8/index.d.ts | | | | blob
types-node/ts4.8/inspector.d.ts | | | | blob
types-node/ts4.8/module.d.ts | | | | blob
types-node/ts4.8/net.d.ts | | | | blob
types-node/ts4.8/os.d.ts | | | | blob
types-node/ts4.8/path.d.ts | | | | blob
types-node/ts4.8/perf_hooks.d.ts | | | | blob
types-node/ts4.8/process.d.ts | | | | blob
types-node/ts4.8/punycode.d.ts | | | | blob
types-node/ts4.8/querystring.d.ts | | | | blob
types-node/ts4.8/readline.d.ts | | | | blob
types-node/ts4.8/readline/promises.d.ts | | | | blob
types-node/ts4.8/repl.d.ts | | | | blob
types-node/ts4.8/stream.d.ts | | | | blob
types-node/ts4.8/stream/consumers.d.ts | | | | blob
types-node/ts4.8/stream/promises.d.ts | | | | blob
types-node/ts4.8/stream/web.d.ts | | | | blob
types-node/ts4.8/string_decoder.d.ts | | | | blob
types-node/ts4.8/test.d.ts | | | | blob
types-node/ts4.8/timers.d.ts | | | | blob
types-node/ts4.8/timers/promises.d.ts | | | | blob
types-node/ts4.8/tls.d.ts | | | | blob
types-node/ts4.8/trace_events.d.ts | | | | blob
types-node/ts4.8/tty.d.ts | | | | blob
types-node/ts4.8/url.d.ts | | | | blob
types-node/ts4.8/util.d.ts | | | | blob
types-node/ts4.8/v8.d.ts | | | | blob
types-node/ts4.8/vm.d.ts | | | | blob
types-node/ts4.8/wasi.d.ts | | | | blob
types-node/ts4.8/worker_threads.d.ts | | | | blob
types-node/ts4.8/zlib.d.ts | | | | blob
types-node/tty.d.ts | | | | blob
types-node/url.d.ts | | | | blob
types-node/util.d.ts | | | | blob
types-node/v8.d.ts | | | | blob
types-node/vm.d.ts | | | | blob
types-node/wasi.d.ts | | | | blob
types-node/worker_threads.d.ts | | | | blob
types-node/zlib.d.ts | | | | blob
Unnamed repository; edit this file 'description' to name the repository.