aboutsummaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorMichał Polański <michal@polanski.me>2021-04-07 21:25:00 +0200
committerMichał Polański <michal@polanski.me>2021-04-07 21:25:00 +0200
commitcb3bd0353fad5f04a2a76366267cd12b1650b098 (patch)
tree8ab8ed7696fcf12365c6a05035d40a4ddff55c84
parentc098d412e61794e5519d15bbbdf902fdeb38596c (diff)
downloadaports-cb3bd0353fad5f04a2a76366267cd12b1650b098.tar.gz
aports-cb3bd0353fad5f04a2a76366267cd12b1650b098.tar.bz2
aports-cb3bd0353fad5f04a2a76366267cd12b1650b098.tar.xz
main/nodejs: security upgrade to 14.16.1
fixes CVE-2020-7774 security advisory: https://github.com/advisories/GHSA-c4w7-xm78-47vh
-rw-r--r--main/nodejs/APKBUILD6
1 files changed, 4 insertions, 2 deletions
diff --git a/main/nodejs/APKBUILD b/main/nodejs/APKBUILD
index 19eb78ffad..9e52df1a07 100644
--- a/main/nodejs/APKBUILD
+++ b/main/nodejs/APKBUILD
@@ -6,6 +6,8 @@
# Maintainer: Jakub Jirutka <jakub@jirutka.cz>
#
# secfixes:
+# 14.16.1-r0:
+# - CVE-2020-7774
# 14.16.0-r0:
# - CVE-2021-22883
# - CVE-2021-22884
@@ -65,7 +67,7 @@
pkgname=nodejs
# Note: Update only to even-numbered versions (e.g. 6.y.z, 8.y.z)!
# Odd-numbered versions are supported only for 9 months by upstream.
-pkgver=14.16.0
+pkgver=14.16.1
pkgrel=0
pkgdesc="JavaScript runtime built on V8 engine - LTS version"
url="https://nodejs.org/"
@@ -179,6 +181,6 @@ npm() {
mv "$pkgdir"/usr/lib/node_modules/npm "$subpkgdir"/usr/lib/node_modules/
}
-sha512sums="13d7df2c7365dcf11f0aa582f92bbc676ea0445ea8e0ffdeeabc6fac1e66986b872757e44e2e52ac4191302ef071e4119799a36dead7a78c9e698455d41fbc49 node-v14.16.0.tar.gz
+sha512sums="40843674584c2010958b4faf12290b525f3e5b13d37e52e3b41d50691de16cc0a29ed1fbc81912a0f76f48648c603dfb726242d232e4542f46ab957a4042c05d node-v14.16.1.tar.gz
dbe8167b61518f8f59176759d69834d57bf3e6a5a5fd3dfc2359cafe0325da08b27f8220d278ed77f50c9f63a03313eabbbb0eaca3e592e5bb4e0d5be0ced373 disable-running-gyp-on-shared-deps.patch
44e81fbf254bd79e38b813f7f5a1336df854588939cba50aaec600660495f9b7745a7049a99eb59d15a51100b3a44f66892a902d7fc32e1399b51883ad4c02cf link-with-libatomic-on-mips32.patch"