aboutsummaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorMichał Polański <michal@polanski.me>2021-04-07 21:33:36 +0200
committerMichał Polański <michal@polanski.me>2021-04-07 21:33:36 +0200
commit002d1ebc270df24edbd6c8093f1093645fb3aeb8 (patch)
treebc9346d8712d771e86f43ab4c5b9cf287ff7dd58
parent0dd9667e7c645e3ab41017a87c49fdcebc7a84e0 (diff)
downloadaports-002d1ebc270df24edbd6c8093f1093645fb3aeb8.tar.gz
aports-002d1ebc270df24edbd6c8093f1093645fb3aeb8.tar.bz2
aports-002d1ebc270df24edbd6c8093f1093645fb3aeb8.tar.xz
main/nodejs: security upgrade to 12.22.1
fixes CVE-2020-7774 security advisory: https://github.com/advisories/GHSA-c4w7-xm78-47vh
-rw-r--r--main/nodejs/APKBUILD6
1 files changed, 4 insertions, 2 deletions
diff --git a/main/nodejs/APKBUILD b/main/nodejs/APKBUILD
index 0f896e0d33..864074be3d 100644
--- a/main/nodejs/APKBUILD
+++ b/main/nodejs/APKBUILD
@@ -6,6 +6,8 @@
# Maintainer: Jakub Jirutka <jakub@jirutka.cz>
#
# secfixes:
+# 12.22.1-r0:
+# - CVE-2020-7774
# 12.21.0-r0:
# - CVE-2021-22883
# - CVE-2021-22884
@@ -62,7 +64,7 @@
pkgname=nodejs
# Note: Update only to even-numbered versions (e.g. 6.y.z, 8.y.z)!
# Odd-numbered versions are supported only for 9 months by upstream.
-pkgver=12.21.0
+pkgver=12.22.1
pkgrel=0
pkgdesc="JavaScript runtime built on V8 engine - LTS version"
url="https://nodejs.org/"
@@ -163,6 +165,6 @@ npm() {
mv "$pkgdir"/usr/lib/node_modules/npm "$subpkgdir"/usr/lib/node_modules/
}
-sha512sums="843fc8dc7711357f0410b13dbdcbc425541f88560954e11d604b659e488535d24676e3701a4853f2038fdb118a9f606571757d68acf1d4054ad330c3ec3ef0f1 node-v12.21.0.tar.gz
+sha512sums="75a0fe700ae48bbc012cbe579a7e1bef8296a83e936121f87b54a265f9729f1478fa8035807f2599e34c46c104095dcb4613da8b334d191b3aa6535287005360 node-v12.22.1.tar.gz
fc5848ced3e591e732b6a9af27679ca82f7605a4b2cd2f7eb6a411664b7c065892fb67a1db5aec7a26207582eecd8377476ed550c1dfb6c7917ba7babfa66a2d dont-run-gyp-files-for-bundled-deps.patch
a63b42c08b55139c1c363f6ba8aba9d85a0621b383ed514f7562cfa02f0cc290785d7cfe09892ac39962980d1b318957511f57b3f9b9d1fbc8704c0603597c9a link-with-libatomic-on-mips32.patch"