From 198d3bb2cd989d9883c042a284d830fb32d5029b Mon Sep 17 00:00:00 2001 From: Andy Postnikov Date: Thu, 4 Jun 2020 02:32:57 +0300 Subject: community/nodejs-current: security upgrade to 14.4.0 - CVE-2020-8172 - CVE-2020-11080 - CVE-2020-8174 --- community/nodejs-current/APKBUILD | 8 ++++++-- 1 file changed, 6 insertions(+), 2 deletions(-) diff --git a/community/nodejs-current/APKBUILD b/community/nodejs-current/APKBUILD index 76c2bb8956..f99f7dd8bd 100644 --- a/community/nodejs-current/APKBUILD +++ b/community/nodejs-current/APKBUILD @@ -2,6 +2,10 @@ # Maintainer: Jose-Luis Rivas # # secfixes: +# 14.4.0-r0: +# - CVE-2020-8172 +# - CVE-2020-11080 +# - CVE-2020-8174 # 13.11.0-r0: # - CVE-2019-15604 # - CVE-2019-15605 @@ -24,7 +28,7 @@ # pkgname=nodejs-current # The current stable version, i.e. non-LTS. -pkgver=14.3.0 +pkgver=14.4.0 pkgrel=0 pkgdesc="JavaScript runtime built on V8 engine - current stable version" url="https://nodejs.org/" @@ -95,7 +99,7 @@ package() { make DESTDIR="$pkgdir" install } -sha512sums="fa1533e179b641f342a862b6349fce8fe30eb90587a2c70ca5bf39dd80b465b4924785fc5ae45dd22d3f809fdb689cba2fe05d4b86d40f82f78390afa9d52f3b node-v14.3.0.tar.gz +sha512sums="48f5c7eb2b7dabc5b20e77ca726ab3e079ad8533549679ed0126d0641252bc0e0f02ec9dbbcdf6cd568d190981d200bbbb1eb6f54b19fdcc953f102bd1dd9038 node-v14.4.0.tar.gz 940cc90aaa77a531cde13e31918a9978f9478936c3851038bcdf2869e64de03ce84dec5a46519469a90a8ba2853226825452d23d9347752abdbe04e944c083eb dont-run-gyp-files-for-bundled-deps.patch 65df7eeadbdfc015185260c0e24f3206714e4d2aacceef742d078a4f8bae386b2867e0f7f3b8c2eac47180cb10a8e14b71a36a23bb74ed6a95eecbaf76897e0c link-with-libatomic-on-mips32.patch ace818285ff0b868f17be64db7c7b77b314ba370fda6bac640d56bf18322a54fa015206a3e1adefa1d78ef66b597eebf10c28d6549005cd7e58f60a37c38b741 elf.patch -- cgit v1.2.3