[ubuntu/hirsute-proposed] nodejs 12.19.0~dfsg-1ubuntu1 (Accepted)

Gianfranco Costamagna locutusofborg at debian.org
Wed Nov 4 09:28:19 UTC 2020 

nodejs (12.19.0~dfsg-1ubuntu1) hirsute; urgency=low

  * Merge from Debian unstable.  Remaining changes:
    - debian/patches/test-lowerseclevel.patch: lower SECLEVEL in the
      openssl.cnf used for testing

nodejs (12.19.0~dfsg-1) unstable; urgency=medium

  * New upstream version 12.19.0~dfsg (Closes: #968681)
  * Refresh patches

nodejs (12.18.4~dfsg-1) unstable; urgency=high

  * New upstream version 12.18.4~dfsg
    Vulnerabilities fixed:
    + CVE-2020-8201
      HTTP Request Smuggling due to CR-to-Hyphen conversion (High)
    + CVE-2020-8252
      fs.realpath.native on may cause buffer overflow (Medium)

nodejs (12.18.3~dfsg-4) unstable; urgency=medium

  * python3 patch: use env.PYTHON in two tests
    Closes: #967032 for good.

nodejs (12.18.3~dfsg-3) unstable; urgency=medium

  * export PYTHON = python3 for Makefile

nodejs (12.18.3~dfsg-2) unstable; urgency=medium

  * tests/control: depends python3, python3-distutils, drop cdbs
    Thanks Moritz Mühlenhoff for noticing that.

nodejs (12.18.3~dfsg-1) unstable; urgency=medium

  * New upstream version 12.18.3~dfsg
  * B-D python3, python3-distutils
    patch configure to use python3 (Closes: #967032)
  * nodejs-doc: depends libjs-highlight.js
  * copyright: dfsg-exclude highlight.pack.js,
    replace sh_javascript.min.js
  * source/lintian-overrides: drop sh_javascript.min.js override
  * Drop patch that restores unminified sh_javascript.min.js
  * Update make-doc.patch to deal with new syntax in esm.md

Date: Thu, 29 Oct 2020 15:14:11 +0100
Changed-By: Gianfranco Costamagna <locutusofborg at debian.org>
Maintainer: Debian Javascript Maintainers <pkg-javascript-devel at alioth-lists.debian.net>
https://launchpad.net/ubuntu/+source/nodejs/12.19.0~dfsg-1ubuntu1
-------------- next part --------------
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Thu, 29 Oct 2020 15:14:11 +0100
Source: nodejs
Architecture: source
Version: 12.19.0~dfsg-1ubuntu1
Distribution: hirsute
Urgency: high
Maintainer: Debian Javascript Maintainers <pkg-javascript-devel at alioth-lists.debian.net>
Changed-By: Gianfranco Costamagna <locutusofborg at debian.org>
Closes: 967032 968681
Changes:
 nodejs (12.19.0~dfsg-1ubuntu1) hirsute; urgency=low
 .
   * Merge from Debian unstable.  Remaining changes:
     - debian/patches/test-lowerseclevel.patch: lower SECLEVEL in the
       openssl.cnf used for testing
 .
 nodejs (12.19.0~dfsg-1) unstable; urgency=medium
 .
   * New upstream version 12.19.0~dfsg (Closes: #968681)
   * Refresh patches
 .
 nodejs (12.18.4~dfsg-1) unstable; urgency=high
 .
   * New upstream version 12.18.4~dfsg
     Vulnerabilities fixed:
     + CVE-2020-8201
       HTTP Request Smuggling due to CR-to-Hyphen conversion (High)
     + CVE-2020-8252
       fs.realpath.native on may cause buffer overflow (Medium)
 .
 nodejs (12.18.3~dfsg-4) unstable; urgency=medium
 .
   * python3 patch: use env.PYTHON in two tests
     Closes: #967032 for good.
 .
 nodejs (12.18.3~dfsg-3) unstable; urgency=medium
 .
   * export PYTHON = python3 for Makefile
 .
 nodejs (12.18.3~dfsg-2) unstable; urgency=medium
 .
   * tests/control: depends python3, python3-distutils, drop cdbs
     Thanks Moritz Mühlenhoff for noticing that.
 .
 nodejs (12.18.3~dfsg-1) unstable; urgency=medium
 .
   * New upstream version 12.18.3~dfsg
   * B-D python3, python3-distutils
     patch configure to use python3 (Closes: #967032)
   * nodejs-doc: depends libjs-highlight.js
   * copyright: dfsg-exclude highlight.pack.js,
     replace sh_javascript.min.js
   * source/lintian-overrides: drop sh_javascript.min.js override
   * Drop patch that restores unminified sh_javascript.min.js
   * Update make-doc.patch to deal with new syntax in esm.md
Checksums-Sha1:
 abe7a5cf12dc59c7ee86bfe5d55e5b394b7808b8 3164 nodejs_12.19.0~dfsg-1ubuntu1.dsc
 5abc562fb241aa3b45da229afa0e57275abc2eca 18498832 nodejs_12.19.0~dfsg.orig.tar.xz
 d53e4ddf35b99d6819e4b266c2d0bbe64bc3ceeb 134524 nodejs_12.19.0~dfsg-1ubuntu1.debian.tar.xz
 d793bbdd273ec398547cfa954b37097ee8cb1b89 15100 nodejs_12.19.0~dfsg-1ubuntu1_source.buildinfo
Checksums-Sha256:
 80e3dbfa93d1810268dbae9a9395a8a6b5e0244e872cfe705900a6ffe94f94fc 3164 nodejs_12.19.0~dfsg-1ubuntu1.dsc
 630bb62f1ade01fca6a1667e7ffd5bc0396c2a6a9203809ee5e4ae0779bb7193 18498832 nodejs_12.19.0~dfsg.orig.tar.xz
 e8e5070f149f1df8eeff2c3337a0ff4397317a8035803d0dd9b3450cdf1883c4 134524 nodejs_12.19.0~dfsg-1ubuntu1.debian.tar.xz
 b397ad8e8b0ae5aca13b4166708b466b84959d5dd812f9d14feb065bea61a48c 15100 nodejs_12.19.0~dfsg-1ubuntu1_source.buildinfo
Files:
 90540934fc9f029744c39c763945f3b6 3164 javascript optional nodejs_12.19.0~dfsg-1ubuntu1.dsc
 2157c7aa11121c9a27f43f6f00edbb67 18498832 javascript optional nodejs_12.19.0~dfsg.orig.tar.xz
 959ec18ccc6d4f249a7e7a5b8710acd6 134524 javascript optional nodejs_12.19.0~dfsg-1ubuntu1.debian.tar.xz
 b6f0c18c288bdc8a1e2185b61502602a 15100 javascript optional nodejs_12.19.0~dfsg-1ubuntu1_source.buildinfo

-----BEGIN PGP SIGNATURE-----

iQIzBAEBCAAdFiEEkpeKbhleSSGCX3/w808JdE6fXdkFAl+aznkACgkQ808JdE6f
XdmU1g//VBEn4maTpJkjjqiIjZzDV8yHunW0FfYMY7Nbc0NCfg6esFuyyyIS3TPf
OCrR8maV/Drwmx4SWsYeBSqJFv1y4mHJdkWlRkVCuGGRq3hZcyhUhQQBSBhdbzdb
CBHbAFWD6ENvppTyRfIzN+vI8ka0AIECwQJKiw1ZHAIXzKWW4ZpXzbeVRl24UT0l
3NqaLbJ3RvzPtleRwZDKqA+0ZCe/ylmGBZgjauBzFN6fP/M2tRIT5+fWO1YouBAz
VIcx5+6TbknOnAS30TmRLglWV2e0xazbaDlwVrSokgRhNUrwnHLLFML8uVDi9Lpj
ElmdOdoit/DPySlsDZV7xUY0MN9ULglSjyiB3fI356zYSs7hAL5rlFd4aDGFsb2E
dlk/a1WtgAJ2gq3J7LPIR8auidJv9MNeVW9U48JThMruNY6nucuP0S8e+SLpwvBo
l5NAoqVtUPPCn16nnaFD+4QO+XknGynC/Y+FWLct01U4/YKtQZuxXh6miDOU7Fr0
XMEb9BhoanbJchUaRcDf85BmUaF7TzNXLinoxvT2z8NgOYSt/aptxj1hKZq4KHBY
Np05P0GlDfcgvTs8AOQH4rY0C3CQf3hV/+O2i01S7wlsSV1CMr8u2cpXE5vUIMU4
q/H5lB9N25nnNG6T8xvSSr228jYJ+cN1cNZajnSJr36S3XteKjs=
=Dss3
-----END PGP SIGNATURE-----

More information about the Hirsute-changes mailing list