From: Raspbian automatic forward porter <root@raspbian.org>
Date: Fri, 6 Jun 2025 06:09:46 +0000 (+0100)
Subject: Merge version 20.19.0+dfsg1-1+rpi1 and 20.19.2+dfsg-1 to produce 20.19.2+dfsg-1+rpi1
X-Git-Tag: archive/raspbian/20.19.2+dfsg-1+rpi1^0
X-Git-Url: https://dgit.raspbian.org/?a=commitdiff_plain;h=294299f708ce37e2686cfebd61d3d3df4ab2aae3;p=nodejs.git

Merge version 20.19.0+dfsg1-1+rpi1 and 20.19.2+dfsg-1 to produce 20.19.2+dfsg-1+rpi1
---

294299f708ce37e2686cfebd61d3d3df4ab2aae3
diff --cc debian/changelog
index 862fc8ee9,50dc4cc9d..1ff99699a
--- a/debian/changelog
+++ b/debian/changelog
@@@ -1,11 -1,14 +1,23 @@@
- nodejs (20.19.0+dfsg1-1+rpi1) trixie-staging; urgency=medium
++nodejs (20.19.2+dfsg-1+rpi1) trixie-staging; urgency=medium
 +
 +  [changes brought forward from 18.10.0+dfsg-6+rpi1 by Peter Michael Green <plugwash@raspbian.org> at Tue, 15 Nov 2022 03:51:54 +0000]
 +  * Set --with-arm-version=6 on raspbian.
 +  * Use armv6k CFLAGS on raspbian.
 +  * Disable testsuite.
 +
-  -- Raspbian forward porter <root@raspbian.org>  Sat, 17 May 2025 11:34:57 +0000
++ -- Raspbian forward porter <root@raspbian.org>  Fri, 06 Jun 2025 06:09:46 +0000
++
+ nodejs (20.19.2+dfsg-1) unstable; urgency=medium
+ 
+   * New upstream version 20.19.2+dfsg
+     Security fixes: (Closes: #1105832)
+     + CVE-2025-23165: add missing call to uv_fs_req_cleanup (low)
+     + CVE-2025-23166: fix error handling on async crypto operations (high)
+     + CVE-2025-23167: Improper HTTP header block termination in llhttp (medium)
+   * Drop patch, applied upstream
+   * Switch back to +dfsg suffix
+ 
+  -- Jérémy Lal <kapouer@melix.org>  Wed, 14 May 2025 23:43:31 +0200
  
  nodejs (20.19.0+dfsg1-1) unstable; urgency=medium