Log message:
nodejs18: updated to 18.20.5

Version 18.20.5 'Hydrogen' (LTS)

Notable Changes

- esm: mark import attributes and JSON module as stable

Log message:
nodejsNN: fix building with ICU 76

Log message:
*: recursive bump for icu 76 shlib major version bump

Log message:
*: revbump for icu downgrade

Log message:
*: recursive bump for icu 76.1 shlib bump

Log message:
nodejs18: updated to 18.20.4

Version 18.20.4 'Hydrogen' (LTS)

This is a security release.
Notable Changes
CVE-2024-36138 - Bypass incomplete fix of CVE-2024-27980 (High)
CVE-2024-22020 - Bypass network import restriction via data URL (Medium)

Log message:
nodejs18: updated to 18.20.3

Version 18.20.3 'Hydrogen' (LTS)

Notable Changes
This release fixes a regression introduced in Node.js 18.19.0 where \ 
http.server.close() was incorrectly closing idle connections.
A fix has also been included for compiling Node.js from source with newer \ 
versions of Clang.
The list of keys used to sign releases has been synchronized with the current \ 
list from the main branch.

Log message:
revbump after icu and protobuf updates

Log message:
nodejs18: updated to 18.20.2

Version 18.20.2 'Hydrogen' (LTS)

Notable Changes
CVE-2024-27980 - Command injection via args parameter of child_process.spawn \ 
without shell option enabled on Windows

Log message:
nodejs18: updated to 18.20.1

Version 18.20.1 'Hydrogen' (LTS)

Notable Changes
CVE-2024-27983 - Assertion failed in node::http2::Http2Session::~Http2Session() \ 
leads to HTTP/2 server crash- (High)
CVE-2024-27982 - HTTP Request Smuggling via Content Length Obfuscation - (Medium)
llhttp version 9.2.1
undici version 5.28.4