From: Raspbian automatic forward porter <root@raspbian.org>
Date: Sat, 7 Sep 2024 19:30:00 +0000 (+0100)
Subject: Merge version 20.15.0+dfsg-1+rpi1 and 20.17.0+dfsg-2 to produce 20.17.0+dfsg-2+rpi1
X-Git-Tag: archive/raspbian/20.17.0+dfsg-2+rpi1^0
X-Git-Url: https://dgit.raspbian.org/?a=commitdiff_plain;h=0f0142ad0cec78d35e407b4a7c6bf1db276b15df;p=nodejs.git

Merge version 20.15.0+dfsg-1+rpi1 and 20.17.0+dfsg-2 to produce 20.17.0+dfsg-2+rpi1
---

0f0142ad0cec78d35e407b4a7c6bf1db276b15df
diff --cc debian/changelog
index 6b781a4af,7b6438aa4..1b031e98a
--- a/debian/changelog
+++ b/debian/changelog
@@@ -1,11 -1,38 +1,47 @@@
- nodejs (20.15.0+dfsg-1+rpi1) trixie-staging; urgency=medium
++nodejs (20.17.0+dfsg-2+rpi1) trixie-staging; urgency=medium
 +
 +  [changes brought forward from 18.10.0+dfsg-6+rpi1 by Peter Michael Green <plugwash@raspbian.org> at Tue, 15 Nov 2022 03:51:54 +0000]
 +  * Set --with-arm-version=6 on raspbian.
 +  * Use armv6k CFLAGS on raspbian.
 +  * Disable testsuite.
 +
-  -- Raspbian forward porter <root@raspbian.org>  Sun, 14 Jul 2024 13:38:34 +0000
++ -- Raspbian forward porter <root@raspbian.org>  Sat, 07 Sep 2024 19:30:00 +0000
++
+ nodejs (20.17.0+dfsg-2) unstable; urgency=medium
+ 
+   * Depend node-minimatch
+ 
+  -- JÃ©rÃ©my Lal <kapouer@melix.org>  Thu, 29 Aug 2024 10:25:23 +0200
+ 
+ nodejs (20.17.0+dfsg-1) unstable; urgency=medium
+ 
+   * New upstream version 20.17.0+dfsg
+   * B-D node-minimatch, added to builtins.
+ 
+  -- JÃ©rÃ©my Lal <kapouer@melix.org>  Wed, 28 Aug 2024 20:25:41 +0200
+ 
+ nodejs (20.16.0+dfsg-1) unstable; urgency=medium
+ 
+   * New upstream version 20.16.0+dfsg
+   * patches:
+     + improve openssl 3.2.2 tests fixes
+     + upstream fix for failing permissions tests in /tmp
+       Closes: #1076542.
+ 
+  -- JÃ©rÃ©my Lal <kapouer@melix.org>  Sun, 18 Aug 2024 14:48:08 +0200
+ 
+ nodejs (20.15.1+dfsg-1) unstable; urgency=medium
+ 
+   * New upstream version 20.15.1+dfsg
+   * Fix watch file to ensure ada 2.7.8
+   * CVE-2024-36138: Bypass incomplete fix of CVE-2024-27980 (High)
+   * CVE-2024-22020: Bypass network import restriction via data URL (Medium)
+   * CVE-2024-22018: fs.lstat bypasses permission model (Low)
+   * CVE-2024-36137: fs.fchown/fchmod bypasses permission model (Low)
+   * CVE-2024-37372: Permission model improperly processes UNC paths (Low)
+   * Add another failing test to loong64/mips64el
+ 
+  -- JÃ©rÃ©my Lal <kapouer@melix.org>  Tue, 09 Jul 2024 10:02:04 +0200
  
  nodejs (20.15.0+dfsg-1) unstable; urgency=medium