Subject: CVS commit: pkgsrc/lang/nodejs14
From: Adam Ciarcinski
Date: 2023-02-17 13:01:51
Message id: 20230217120151.594F8FA90@cvs.NetBSD.org
Log Message:
nodejs14: updated to 14.21.3

Version 14.21.3 'Fermium' (LTS)

This is a security release.

Notable Changes

The following CVEs are fixed in this release:

* CVE-2023-23918: Node.js Permissions policies can be bypassed via \ 
process.mainModule (High)
* CVE-2023-23920: Node.js insecure loading of ICU data through ICU\_DATA \ 
environment variable (Low)
Files:
RevisionActionfile
1.9modifypkgsrc/lang/nodejs14/Makefile
1.7modifypkgsrc/lang/nodejs14/distinfo