Subject: CVS commit: pkgsrc/lang/nodejs16
From: Adam Ciarcinski
Date: 2022-09-27 09:57:29
Message id: 20220927075729.CDAAFFA90@cvs.NetBSD.org
Log Message:
nodejs16: updated to 16.17.1

Version 16.17.1 'Gallium' (LTS)

This is a security release.

Notable changes

The following CVEs are fixed in this release:

CVE-2022-32212: DNS rebinding in --inspect on macOS (High)
CVE-2022-32213: bypass via obs-fold mechanic (Medium)
CVE-2022-35255: Weak randomness in WebCrypto keygen
CVE-2022-35256: HTTP Request Smuggling - Incorrect Parsing of Header Fields (Medium)
Files:
RevisionActionfile
1.5modifypkgsrc/lang/nodejs16/Makefile
1.6modifypkgsrc/lang/nodejs16/distinfo