Subject: CVS commit: pkgsrc/lang/nodejs20
From: Adam Ciarcinski
Date: 2024-07-11 20:59:31
Message id: 20240711185931.BA6E7FC74@cvs.NetBSD.org
Log Message:
nodejs20: updated to 20.15.1

Version 20.15.1 'Iron' (LTS)

Notable Changes
CVE-2024-36138 - Bypass incomplete fix of CVE-2024-27980 (High)
CVE-2024-22020 - Bypass network import restriction via data URL (Medium)
CVE-2024-22018 - fs.lstat bypasses permission model (Low)
CVE-2024-36137 - fs.fchown/fchmod bypasses permission model (Low)
CVE-2024-37372 - Permission model improperly processes UNC paths (Low)
Files:
RevisionActionfile
1.14modifypkgsrc/lang/nodejs20/Makefile
1.12modifypkgsrc/lang/nodejs20/distinfo