Log Message:
nodejs: updated to 14.17.3

Version 14.17.3 'Fermium' (LTS)

Notable Changes

Node.js 14.17.2 introduced a regression in the Windows installer on non-English \ 
locales that is being fixed in this release. There is no need to download this \ 
release if you are not using the Windows installer.

Version 14.17.2 'Fermium' (LTS)

This is a security release.

Notable Changes

Vulnerabilities fixed:

CVE-2021-22918: libuv upgrade - Out of bounds read (Medium)
Node.js is vulnerable to out-of-bounds read in libuv's uv__idna_toascii() \ 
function which is used to convert strings to ASCII. This is called by Node's dns \ 
module's lookup() function and can lead to information disclosures or crashes. \ 
You can read more about it in \ 
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22918

CVE-2021-22921: Windows installer - Node Installer Local Privilege Escalation \ 
(Medium)
Node.js is vulnerable to local privilege escalation attacks under certain \ 
conditions on Windows platforms. More specifically, improper configuration of \ 
permissions in the installation directory allows an attacker to perform two \ 
different escalation attacks: PATH and DLL hijacking. You can read more about it \ 
in https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22921