Subject: CVS commit: pkgsrc/lang/nodejs16
From: Adam Ciarcinski
Date: 2023-02-17 13:00:54
Message id: 20230217120054.8344FFA90@cvs.NetBSD.org
Log Message:
nodejs16: updated to 16.19.1

Version 16.19.1 'Gallium' (LTS)

This is a security release.

Notable Changes

The following CVEs are fixed in this release:

* CVE-2023-23918: Node.js Permissions policies can be bypassed via \ 
process.mainModule (High)
* CVE-2023-23919: Node.js OpenSSL error handling issues in nodejs crypto library \ 
(Medium)
* CVE-2023-23920: Node.js insecure loading of ICU data through ICU\_DATA \ 
environment variable (Low)
Files:
RevisionActionfile
1.11modifypkgsrc/lang/nodejs16/Makefile
1.10modifypkgsrc/lang/nodejs16/distinfo