Subject: CVS commit: pkgsrc/lang/nodejs
From: Adam Ciarcinski
Date: 2024-07-11 21:08:30
Message id: 20240711190830.15604FC74@cvs.NetBSD.org
Log Message:
nodejs: updated to 22.4.1

Version 22.4.1 (Current)

Notable Changes
CVE-2024-36138 - Bypass incomplete fix of CVE-2024-27980 (High)
CVE-2024-22020 - Bypass network import restriction via data URL (Medium)
CVE-2024-22018 - fs.lstat bypasses permission model (Low)
CVE-2024-36137 - fs.fchown/fchmod bypasses permission model (Low)
CVE-2024-37372 - Permission model improperly processes UNC paths (Low)
Files:
RevisionActionfile
1.298modifypkgsrc/lang/nodejs/Makefile
1.266modifypkgsrc/lang/nodejs/distinfo