diff options
author | Stacy Gaikovaia <Stacy.Gaikovaia@windriver.com> | 2020-12-02 15:33:24 -0500 |
---|---|---|
committer | Armin Kuster <akuster808@gmail.com> | 2021-01-10 10:53:13 -0800 |
commit | 387f40ce8068ec8848c2e3b76ce2e3267b98c3d6 (patch) | |
tree | f31ae6713771f0c61cb9ec1429e4f5b43e02a3b6 | |
parent | 992e09f09a40e7a8d03c7c4b5adf40f821ed3774 (diff) | |
download | meta-openembedded-contrib-387f40ce8068ec8848c2e3b76ce2e3267b98c3d6.tar.gz |
nodejs: 12.19.0 -> 12.19.1
Uprev nodejs in order to fix CVE-2020-8277.
This CVE allows an attacker to trigger a DNS request for a host
of their choice, which could trigger a Denial of Service in
nodejs versions < 12.19.1.
See https://nvd.nist.gov/vuln/detail/CVE-2020-8277 for details.
CVE: CVE-2020-8277
Signed-off-by: Stacy Gaikovaia <Stacy.Gaikovaia@windriver.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
(cherry picked from commit a44015408253d8a4f64055f41fa1f497aeacfc30)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
-rw-r--r-- | meta-oe/recipes-devtools/nodejs/nodejs_12.19.1.bb (renamed from meta-oe/recipes-devtools/nodejs/nodejs_12.19.0.bb) | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/meta-oe/recipes-devtools/nodejs/nodejs_12.19.0.bb b/meta-oe/recipes-devtools/nodejs/nodejs_12.19.1.bb index 9d15586238..8021fedf44 100644 --- a/meta-oe/recipes-devtools/nodejs/nodejs_12.19.0.bb +++ b/meta-oe/recipes-devtools/nodejs/nodejs_12.19.1.bb @@ -26,7 +26,7 @@ SRC_URI = "http://nodejs.org/dist/v${PV}/node-v${PV}.tar.xz \ SRC_URI_append_class-target = " \ file://0002-Using-native-binaries.patch \ " -SRC_URI[sha256sum] = "3b671c45c493f96d7e018c15110cdbafa4478e5e5cfc9e6eec83cea9e6b551e1" +SRC_URI[sha256sum] = "74077e0cc3db000a6f3cc685b220e609807b61adc8e7d8243e8511d478d1b17d" S = "${WORKDIR}/node-v${PV}" |