File nodejs16.changes of Package nodejs16
267
1
-------------------------------------------------------------------2
Wed Mar 16 11:01:02 UTC 2022 - Adam Majer <adam.majer@suse.de>3
4
- update to LTS release 16.14.1:5
* deps: upgrade npm to 8.5.06
* http2: fix memory leak on nghttp2 hd threshold7
8
- 42342.patch: upstreamed, dropped9
- versioned.patch: refreshed10
11
-------------------------------------------------------------------12
Tue Mar 15 13:29:20 UTC 2022 - Adam Majer <adam.majer@suse.de>13
14
- 42342.patch: fix expired certificates in unit tests 15
16
-------------------------------------------------------------------17
Thu Feb 17 12:31:36 UTC 2022 - Adam Majer <adam.majer@suse.de>18
19
- update to LTS release 16.14.0:20
* deps: upgrade npm to 8.1.421
* child_process: add support for URL to cp.fork22
* fs: accept URL as argument for fs.rm and fs.rmSync23
* lib:24
+ make AbortSignal cloneable/transferable25
+ add AbortSignal.timeout26
+ add reason to AbortSignal27
+ add unsubscribe method to non-active DC channels28
* process: add getActiveResourcesInfo()29
* src:30
+ add x509.fingerprint512 to crypto module31
+ add flags for controlling process behavior32
* stream:33
+ add map and filter methods to readable34
+ deprecate thenable support35
* timers: add experimental scheduler api36
* util:37
+ add numericSeparator to util.inspect38
+ always visualize cause property in errors during inspection39
+ pass through the inspect function to custom inspect functions40
41
npm_search_paths.patch, versioned.patch: refreshed42
43
-------------------------------------------------------------------44
Fri Jan 28 16:09:53 UTC 2022 - Adam Majer <adam.majer@suse.de>45
46
- Add buildtime version check to determine if we need patched47
openssl Requires: or already in upstream. (bsc#1192489)48
49
-------------------------------------------------------------------50
Tue Jan 18 08:29:18 UTC 2022 - Adam Majer <adam.majer@suse.de>51
52
- rsa-pss-revert.patch: dropped, since openssl updated with needed53
functionality 54
55
-------------------------------------------------------------------56
Tue Jan 11 18:48:04 UTC 2022 - Adam Majer <adam.majer@suse.de>57
58
- update to 16.13.2:59
Security update fixing the following issues:60
61
* Improper handling of URI Subject Alternative Names (Medium)62
(CVE-2021-44531, bsc#1194511)63
* Certificate Verification Bypass via String Injection (Medium)64
(CVE-2021-44532, bsc#1194512)65
* Incorrect handling of certificate subject and issuer fields (Medium)66
(CVE-2021-44533, bsc#1194513)67
* Prototype pollution via console.table properties (Low)68
(CVE-2022-21824, bsc#1194514)69
70
-------------------------------------------------------------------71
Wed Jan 5 20:50:19 UTC 2022 - Adam Majer <adam.majer@suse.de>72
73
- fix_ci_tests.patch: fix tests on s390x74
75
-------------------------------------------------------------------76
Tue Jan 4 12:17:19 UTC 2022 - Adam Majer <adam.majer@suse.de>77
78
- rsa-pss-revert.patch: temporarily revert functionality requiring79
newer openssl80
81
-------------------------------------------------------------------82
Tue Dec 7 16:42:18 UTC 2021 - Adam Majer <adam.majer@suse.de>83
84
- Update to 16.13.1:85
* deps: upgrade npm to 8.1.286
* lib: fix regular expression to detect `/` and `\`87
88
- 40670.patch: upstreamed89
- fix_ci_tests.patch: refreshed90
91
-------------------------------------------------------------------92
Thu Nov 25 12:21:25 UTC 2021 - Guillaume GARDET <guillaume.gardet@opensuse.org>93
94
- Fix CXXFLAGS in Tumbleweed - boo#119282495
96
-------------------------------------------------------------------97
Tue Nov 9 10:43:16 UTC 2021 - Adam Majer <adam.majer@suse.de>98
99
- BR python 3.6+100
101
-------------------------------------------------------------------102
Sat Nov 6 14:13:02 UTC 2021 - Adam Majer <adam.majer@suse.de>103
104
- Update to 16.13.0:105
* Experimental ESM Loader Hooks API106
https://github.com/nodejs/node/pull/37468107
* deps: upgrade npm to 8.1.0 (npm team)108
* vm: add support for import assertions in dynamic imports109
110
- Changes in 16.11.1:111
* deps: update llhttp to 6.0.4112
- HTTP Request Smuggling due to spaced in headers113
(bsc#1191601, CVE-2021-22959)114
- HTTP Request Smuggling when parsing the body115
(bsc#1191602, CVE-2021-22960)116
117
- Changes in 16.11.0:118
* deps: update nghttp2 to v1.45.1119
120
- Changes in 16.10.0:121
* crypto: add rsa-pss keygen parameters122
* fs: make open and close stream override optional when unused123
* http: limit requests per connection124
The maximum number of requests a socket can handle before closing125
keep alive connection can be set with server.maxRequestsPerSocket.126
* src: add --no-global-search-paths cli option127
* stream: add signal support to pipeline generators128
129
- Changes in 16.9.0:130
* Added support for corepack131
* crypto: add RSA-PSS params to asymmetricKeyDetails132
* module: support pattern trailers133
* stream: add stream.compose134
135
- Changes in 16.8.0:136
* doc: deprecate type coercion for dns.lookup options137
* stream: add stream.Duplex.from utility and isDisturbed helper138
* util: expose toUSVString139
140
- Changes in 16.7.0:141
* fs: experimental: add recursive cp method142
143
- refreshed: fix_ci_tests.patch, flaky_test_rerun.patch,144
nodejs-libpath.patch, sle12_python3_compat.patch,145
versioned.patch, node_modules.tar.xz146
147
-------------------------------------------------------------------148
Tue Nov 2 14:40:41 UTC 2021 - Dominique Leuenberger <dimstar@opensuse.org>149
150
- Add 40670.patch: test: fix test-datetime-change-notify after151
daylight change.152
153
-------------------------------------------------------------------154
Fri Oct 15 19:57:42 UTC 2021 - Bernhard Voelker <mail@bernhard-voelker.de>155
156
- test-skip-y2038-on-32bit-time_t.patch: Add patch to skip the test157
'test/parallel/test-fs-utimes-y2K38.js' which fails with a FP158
on platforms with 32-bit time_t.159
- nodejs16.spec: Reference it.160
161
-------------------------------------------------------------------162
Thu Aug 12 13:51:48 UTC 2021 - Adam Majer <adam.majer@suse.de>163
164
- Update to 16.6.2:165
* CVE-2021-3672/CVE-2021-22931: Improper handling of untypical166
characters in domain names (bsc#1189370, bsc#1188881)167
* CVE-2021-22940: Use after free on close http2 on stream canceling168
(bsc#1189368)169
* CVE-2021-22939: Incomplete validation of rejectUnauthorized parameter170
(bsc#1189369)171
* deps: upgrade npm to 7.20.3172
* deps: revert ABI-breaking change from V8 9.2173
* module: fix ERR_REQUIRE_ESM error for null frames174
175
- cares_public_headers.patch: don't use private headers176
177
-------------------------------------------------------------------178
Mon Aug 2 13:02:58 UTC 2021 - Adam Majer <adam.majer@suse.de>179
180
- Update to 16.6.0:181
http2: fixes use after free on close http2 on stream canceling182
(bsc#1188917, CVE-2021-22930)183
184
-------------------------------------------------------------------185
Thu Jul 22 12:18:32 UTC 2021 - Adam Majer <adam.majer@suse.de>186
187
- legacy_python.patch: fix building with python 3.4 in SLE-12188
189
-------------------------------------------------------------------190
Wed Jul 21 21:57:54 UTC 2021 - Adam Majer <adam.majer@suse.de>191
192
- Update to 16.5.0:193
* deps: upgrade npm to 7.19.1194
* fs: allow empty string for temp directory prefix195
* Node.js now exposes an experimental implementation of the196
Web Streams API197
198
-------------------------------------------------------------------199
Fri Jul 2 15:17:09 UTC 2021 - Adam Majer <adam.majer@suse.de>200
201
- Update to 16.4.1:202
deps: libuv upgrade - Out of bounds read (Medium)203
(bsc#1187973, CVE-2021-22918)204
205
-------------------------------------------------------------------206
Thu Jul 1 13:34:05 UTC 2021 - Adam Majer <adam.majer@suse.de>207
208
- node-gyp_7.1.2.tar.xz: for SLE-12, use latest node-gyp that209
is compatible with python 3.4210
211
-------------------------------------------------------------------212
Wed Jun 23 12:57:04 UTC 2021 - Adam Majer <adam.majer@suse.de>213
214
- Update to 16.4.0:215
* async_hooks: stabilize part of AsyncLocalStorage216
* deps:217
+ upgrade npm to 7.18.1218
+ update V8 to 9.1.269.36219
* dns: allow --dns-result-order to change default dns verbatim220
221
-------------------------------------------------------------------222
Mon Jun 21 05:01:32 UTC 2021 - Andreas Schneider <asn@cryptomilk.org>223
224
- Allow building for Fedora in the OBS225
226
-------------------------------------------------------------------227
Fri Jun 4 20:59:13 UTC 2021 - Dirk Müller <dmueller@suse.com>228
229
- update to 16.3.0:230
* add -C alias for --conditions flag231
* add workspaces support to npm install commands232
233
-------------------------------------------------------------------234
Mon May 31 16:27:44 UTC 2021 - Adam Majer <adam.majer@suse.de>235
236
- Use libalternatives instead of update-alternatives237
238
-------------------------------------------------------------------239
Thu May 20 14:56:23 UTC 2021 - Adam Majer <adam.majer@suse.de>240
241
- New upstream version 16.2.0:242
* async_hooks: use new v8::Context PromiseHook API243
* deps: npm updated to 7.13.0244
* lib: support setting process.env.TZ on windows245
* module: add support for URL to import.meta.resolve246
* process: add 'worker' event247
* util: add util.types.isKeyObject and util.types.isCryptoKey248
249
-------------------------------------------------------------------250
Wed May 5 11:21:13 UTC 2021 - Adam Majer <adam.majer@suse.de>251
252
- New upstream version 16.1.0253
fs: allow no-params fsPromises fileHandle read254
255
-------------------------------------------------------------------256
Tue May 4 12:00:35 UTC 2021 - Adam Majer <adam.majer@suse.de>257
258
- New upstrean version 16.0.0:259
For complete list of changes since 15.x, please see260
https://github.com/nodejs/node/blob/master/doc/changelogs/CHANGELOG_V16.md#16.0.0261
262
-------------------------------------------------------------------263
Wed Mar 17 12:05:50 UTC 2021 - Adam Majer <adam.majer@suse.de>264
265
- Import staging 16.x266
267