Change log for nodejs package in Ubuntu
| 51 → 100 of 161 results | First • Previous • Next • Last |
| Superseded in groovy-proposed |
nodejs (12.18.2~dfsg-1) unstable; urgency=medium * New upstream version 12.18.2~dfsg * Drop Breaks: libnode64-dev, package does not exist * Drop libnode-dev Depends: nodejs, useless * libnode72 breaks libnode64. Closes: #966008 -- Jérémy Lal <email address hidden> Wed, 22 Jul 2020 10:36:58 +0200
Available diffs
| Superseded in groovy-proposed |
nodejs (12.18.1~dfsg-1ubuntu1) groovy; urgency=medium * Merge from Debian (LP: #1882185). Remaining changes: - debian/control: + change python build dependency to python2 - debian/tests/control: change python test dependency to python2 - debian/patches/python2.patch: explicitly invoke python2 in tests - debian/patches/test-lowerseclevel.patch: lower SECLEVEL in the openssl.cnf used for testing
Available diffs
| Superseded in groovy-proposed |
nodejs (12.18.0~dfsg-3ubuntu1) groovy; urgency=medium * Merge from Debian (LP: #1882185). Remaining changes: - debian/control: + change python build dependency to python2 - debian/tests/control: change python test dependency to python2 - debian/patches/python2.patch: explicitly invoke python2 in tests - debian/patches/test-lowerseclevel.patch: lower SECLEVEL in the openssl.cnf used for testing
| Superseded in groovy-release |
| Published in focal-release |
| Deleted in focal-proposed (Reason: moved to Release) |
nodejs (10.19.0~dfsg-3ubuntu1) focal; urgency=medium * Merge from Debian (LP: #1863463). Remaining changes: - debian/control, debian/rules: + change node-acorn* build dependencies to node-debbundle-acorn + change python build dependency to python2 - debian/tests/control: change python test dependency to python2 - debian/patches/python2.patch: explicitly invoke python2 in tests - debian/patches/test-lowerseclevel.patch: lower SECLEVEL in the openssl.cnf used for testing - debian/patches/0001-test-move-foafssl-certs-to-fixtures-keys.patch: upstream patch to move FOAF+SSL certs to fixtures/keys/
Available diffs
nodejs (10.17.0~dfsg-2ubuntu6) focal; urgency=medium
* Cherrypick updated foafssl test case keys from master, to unbreak
tests with new openssl.
* Update vendorized acorn build for 6.*.
-- Dimitri John Ledkov <email address hidden> Fri, 06 Mar 2020 00:57:55 +0000
Available diffs
| Superseded in focal-proposed |
nodejs (10.17.0~dfsg-2ubuntu5) focal; urgency=medium * No-change rebuild for icu soname change. -- Matthias Klose <email address hidden> Tue, 03 Mar 2020 21:34:35 +0100
Available diffs
nodejs (10.17.0~dfsg-2ubuntu4) focal; urgency=medium * No-change rebuild for icu soname change. -- Matthias Klose <email address hidden> Thu, 13 Feb 2020 12:39:22 +0100
Available diffs
| Superseded in focal-proposed |
nodejs (10.17.0~dfsg-2ubuntu3) focal; urgency=medium * Use python2 in one more place.
Available diffs
| Superseded in focal-proposed |
nodejs (10.17.0~dfsg-2ubuntu2) focal; urgency=medium * Use python2 in more places.
Available diffs
| Superseded in focal-proposed |
nodejs (10.17.0~dfsg-2ubuntu1) focal; urgency=medium
* Lower SECLEVEL in the openssl.cnf used for testing, as in Ubuntu
SECLEVEL is compiled into openssl, rather than set/unset from system
openssl.cnf. LP: #1858971
* Build-depend on python2.
-- Dimitri John Ledkov <email address hidden> Thu, 09 Jan 2020 13:11:24 +0000
Available diffs
| Superseded in focal-proposed |
nodejs (10.17.0~dfsg-2) unstable; urgency=medium
* Link to atomic using a patch, LDFLAGS is not enough
This is at least needed on mipsel.
-- Jérémy Lal <email address hidden> Fri, 25 Oct 2019 11:09:09 +0200
| Superseded in focal-release |
| Obsolete in eoan-release |
| Deleted in eoan-proposed (Reason: moved to release) |
nodejs (10.15.2~dfsg-2ubuntu1) eoan; urgency=medium
* debian/patches/update_test_libuv1_ebadf.patch: Starting in libuv 1.27.0,
test-dgram-address.js should expect EBADF instead of EINVAL.
-- Mathieu Trudel-Lapierre <email address hidden> Fri, 02 Aug 2019 13:03:36 -0400
Available diffs
nodejs (10.15.2~dfsg-2) unstable; urgency=medium
* Avoid two tests to cause a FTBFS (Closes #919588)
+ test-fs-error-messages fails with eatmydata
+ test-net-listen-after-destroying-stdin is flaky
* gbp for debian/buster branch
-- Jérémy Lal <email address hidden> Mon, 08 Apr 2019 15:06:40 +0200
Available diffs
- diff from 10.15.2~dfsg-1 to 10.15.2~dfsg-2 (932 bytes)
| Superseded in eoan-release |
| Obsolete in disco-release |
| Deleted in disco-proposed (Reason: moved to release) |
nodejs (10.15.2~dfsg-1) unstable; urgency=high
* New upstream version 10.15.2~dfsg
Slowloris HTTP Denial of Service with keep-alive
(CVE-2019-5737)
-- Jérémy Lal <email address hidden> Thu, 28 Feb 2019 15:52:30 +0100
Available diffs
| Superseded in disco-proposed |
nodejs (10.15.1~dfsg-5build1) disco; urgency=medium * Rebuild against new acorn with unicode11. -- Gianfranco Costamagna <email address hidden> Tue, 26 Feb 2019 10:35:47 +0100
Available diffs
nodejs (10.15.1~dfsg-5) unstable; urgency=medium * Install only headers * /usr/include/v8 should contain the headers directly -- Jérémy Lal <email address hidden> Sat, 09 Feb 2019 11:55:56 +0100
Available diffs
nodejs (10.15.1~dfsg-2) unstable; urgency=medium
* Fix Build-Deps and add libssl-dev to libnode-dev.
Closes: #921074.
* Refactor deps in debian/rules
* Declare Breaks properly in rules/control.in.in
-- Jérémy Lal <email address hidden> Fri, 01 Feb 2019 22:18:18 +0100
Available diffs
| Superseded in disco-proposed |
nodejs (10.15.0~dfsg-10) unstable; urgency=medium
* M-A: same on libnode-dev, nodejs-dev
* Drop nodejs-dev package.
Addons should instead:
+ Build-Depends libnode-dev, node-gyp
+ remove dh --with nodejs argument in debian/rules
+ use debhelper >= 10 because it strips and shlibs *.node files
-- Jérémy Lal <email address hidden> Fri, 25 Jan 2019 13:51:37 +0100
Available diffs
| Superseded in disco-proposed |
nodejs (10.15.0~dfsg-9) unstable; urgency=medium * M-A: foreign on nodejs-doc * libnode-dev depends libuv1-dev (Closes: #905415) -- Jérémy Lal <email address hidden> Mon, 21 Jan 2019 08:33:36 +0100
Available diffs
| Deleted in disco-proposed (Reason: remove new nodejs, requested by xnox and Locutus) |
nodejs (10.15.0~dfsg-8ubuntu1) disco; urgency=medium
* Build ignoring test-suite results, will retest any/all failing tests
as flakey when done.
-- Dimitri John Ledkov <email address hidden> Fri, 18 Jan 2019 11:37:12 +0000
Available diffs
nodejs (10.15.0~dfsg-8) unstable; urgency=medium
* Suggests npm - because nodejs must not be blocked by it.
Closes: #918388.
* Patch to silence buffer deprecations. Closes: #918456.
This patch is meant to ease migration to testing, and to be
removed as soon as possible.
It avoids printing to stderr deprecation warning about
calling Buffer as a constructor without the new operator.
-- Jérémy Lal <email address hidden> Sun, 06 Jan 2019 11:18:34 +0100
Available diffs
| Superseded in disco-proposed |
nodejs (8.11.4~dfsg-0ubuntu6) disco; urgency=medium
* Recreate new upstream tarball without stripping deps/openssl.
* Use upstream embedded openssl1.0. Nodejs 10.x can use system-wide
libssl1.1, there is upstream support for 1.1.0 and support for 1.1.1
is in progress. Switching this package to embedded openssl1.0 unblocks
removing openssl1.0 from disco.
-- Dimitri John Ledkov <email address hidden> Sun, 18 Nov 2018 00:54:39 +0000
Available diffs
nodejs (8.11.4~dfsg-0ubuntu5) disco; urgency=medium * Revert previous upload now that the regression in libuv1 is fixed. -- Adam Conrad <email address hidden> Wed, 14 Nov 2018 21:49:10 -0700
Available diffs
| Superseded in disco-proposed |
nodejs (8.11.4~dfsg-0ubuntu4) disco; urgency=medium * Mark one failing test on s390x as flaky for an initial build. -- Matthias Klose <email address hidden> Thu, 15 Nov 2018 01:52:40 +0100
Available diffs
| Superseded in disco-proposed |
nodejs (8.11.4~dfsg-0ubuntu3) disco; urgency=medium * Fix build with ICU 63.1. Closes: #913508. -- Matthias Klose <email address hidden> Wed, 14 Nov 2018 08:32:12 +0100
Available diffs
| Superseded in disco-proposed |
nodejs (8.11.4~dfsg-0ubuntu2) disco; urgency=medium * No-change rebuild for icu soname changes. -- Matthias Klose <email address hidden> Tue, 13 Nov 2018 08:15:52 +0000
Available diffs
nodejs (8.10.0~dfsg-2ubuntu0.4) bionic; urgency=medium * Use openssl1.0 client binary in tests LP: #1798367 - resurrect fix_sslv3_test.patch - revert s_client_tls12.patch, as not needed with old ssl - reenable-more-tests.patch - reenable openssl1.0 and zlib tests, they should work -- Dimitri John Ledkov <email address hidden> Wed, 17 Oct 2018 13:21:44 +0100
Available diffs
| Superseded in disco-release |
| Obsolete in cosmic-release |
| Deleted in cosmic-proposed (Reason: moved to release) |
nodejs (8.11.4~dfsg-0ubuntu1) cosmic; urgency=medium
* New upstream release:
- CVE-2018-0732 (OpenSSL)
- CVE-2018-12115 (Node.js)
- CVE-2018-7167
- CVE-2018-7161
* Drop patches, part of thew new upstream release:
- regen-test-certs.patch
- CVE-2018-7161.patch
* Use openssl1.0 client binary in tests
- resurrect fix_sslv3_test.patch
- use old openssl error string fix-openssl1.0-error-message.patch
- revert s_client_tls12.patch, as not needed with old ssl
- reenable-more-tests.patch - reenable openssl1.0 and zlib tests, they
should work
-- Dimitri John Ledkov <email address hidden> Thu, 04 Oct 2018 03:20:13 +0100
Available diffs
nodejs (8.11.2~dfsg-1ubuntu2) cosmic; urgency=medium
[ Dan Streetman ]
* Force dependency on openssl1.0
The newer openssl has ABI change, and this version of nodejs
requires building with the older 1.0.2 version of openssl.
(LP: #1779863)
[ Mauricio Faria de Oliveira ]
* d/p/revert-26388feb760c42d5a342a08507f13a3a268918da.patch:
Fix build errors with openssl 1.0.2 due to patch for openssl 1.1.
(LP: #1779863)
* d/p/cd2b80c1f57faa349232276e113fe09be5da1106.patch: Fix test-case
failure (parallel/test-child-process-stdout-ipc) with libuv 1.21+.
-- Mauricio Faria de Oliveira <email address hidden> Wed, 12 Sep 2018 16:29:53 -0300
Available diffs
| Superseded in cosmic-proposed |
nodejs (8.11.2~dfsg-1ubuntu1) cosmic; urgency=medium
* SECURITY UPDATE: HTTP/2 DoS vulnerability
- debian/patches/CVE-2018-7161.patch: An attacker can cause a denial of
service (DoS) by causing a node server providing an http2 server to
crash by triggering a cleanup bug (use after free).
- CVE-2018-7161
* Fix test failures due to expired certificates
- debian/patches/regen-test-certs.patch: test: update certificates and
private keys.
-- Mike Salvatore <email address hidden> Thu, 09 Aug 2018 09:36:17 -0400
Available diffs
nodejs (8.10.0~dfsg-2ubuntu0.3) bionic; urgency=medium
* Force dependency on openssl1.0
The newer openssl has ABI change, and this version of nodejs
requires building with the older 1.0.2 version of openssl.
(LP: #1779863)
-- Dan Streetman <email address hidden> Mon, 23 Jul 2018 16:12:30 -0400
Available diffs
nodejs (8.10.0~dfsg-2ubuntu0.2) bionic-security; urgency=medium
* SECURITY UPDATE: HTTP/2 DoS vulnerability
- debian/patches/CVE-2018-7161.patch: An attacker can cause a denial of
service (DoS) by causing a node server providing an http2 server to
crash by triggering a cleanup bug (use after free).
- CVE-2018-7161
* Fix test failures due to expired certificates
- debian/patches/regen-test-certs.patch: test: update certificates and
private keys.
-- Mike Salvatore <email address hidden> Thu, 09 Aug 2018 14:20:02 -0400
Available diffs
nodejs (0.10.25~dfsg2-2ubuntu1.2) trusty-security; urgency=medium
* SECURITY UPDATE: CRLF injection vulnerability
- debian/patches/CVE-2016-5325.patch: Previously, the reason argument
passed to ServerResponse#writeHead was not being properly validated. One
could pass CRLFs which could lead to http response splitting. This
commit changes the behavior to throw an error in the event any invalid
characters are included in the reason.
lib/http.js
- CVE-2016-5325
-- Mike Salvatore <email address hidden> Tue, 07 Aug 2018 10:42:55 -0400
Available diffs
nodejs (4.2.6~dfsg-1ubuntu4.2) xenial-security; urgency=medium
* SECURITY UPDATE: CRLF injection vulnerability
- debian/patches/CVE-2016-5325-1.patch: Previously, the reason argument
passed to ServerResponse#writeHead was not being properly validated. One
could pass CRLFs which could lead to http response splitting. This
commit changes the behavior to throw an error in the event any invalid
characters are included in the reason.
lib/_http_common.js
lib/_http_server.js
test/parallel/test-http-status-reason-invalid-chars.js
- debian/patches/CVE-2016-5325-2.patch: The certificates in test fixtures
were set to expire in 999 days since they were generated. That time has
passed, and they have to be reissued. Bump expiration time to 99999 days
for all of them to prevent this from happening again in near future.
- CVE-2016-5325
-- Mike Salvatore <email address hidden> Wed, 08 Aug 2018 10:16:51 -0400
Available diffs
| Deleted in bionic-proposed (Reason: moved to -updates) |
nodejs (8.10.0~dfsg-2ubuntu0.1) bionic; urgency=medium
* Force dependency on openssl1.0
The newer openssl has ABI change, and this version of nodejs
requires building with the older 1.0.2 version of openssl.
(LP: #1779863)
-- Dan Streetman <email address hidden> Mon, 23 Jul 2018 16:12:30 -0400
Available diffs
nodejs (8.11.2~dfsg-1) unstable; urgency=medium
* New upstream version 8.11.2~dfsg
* Upstream openssl 1.1.1 wip patches (Closes: #898805)
Also make sure tests still run with openssl 1.1.0
-- Jérémy Lal <email address hidden> Thu, 17 May 2018 19:31:13 +0200
Available diffs
- diff from 8.10.0~dfsg-2 to 8.11.2~dfsg-1 (788.0 KiB)
- diff from 8.11.1~dfsg-2build1 (in Ubuntu) to 8.11.2~dfsg-1 (706.4 KiB)
| Superseded in cosmic-proposed |
nodejs (8.11.1~dfsg-2build1) cosmic; urgency=medium * No-change rebuild for http-parser soname change. -- Matthias Klose <email address hidden> Mon, 14 May 2018 17:33:53 +0000
Available diffs
| Superseded in cosmic-proposed |
nodejs (8.11.1~dfsg-2) unstable; urgency=medium * Upload to unstable -- Jérémy Lal <email address hidden> Fri, 13 Apr 2018 09:25:37 +0200
| Superseded in cosmic-release |
| Published in bionic-release |
| Deleted in bionic-proposed (Reason: moved to release) |
nodejs (8.10.0~dfsg-2) experimental; urgency=medium * Drop binutils dependency (Closes: #893841) * Move repository to https://salsa.debian.org/js-team/nodejs.git -- Jérémy Lal <email address hidden> Fri, 23 Mar 2018 09:30:55 +0100
Available diffs
| Superseded in bionic-proposed |
nodejs (8.10.0~dfsg-1) experimental; urgency=medium * New upstream version 8.10.0~dfsg * Vcs-Git for that branch * Remove openssl patches and others, applied upstream * Depends icu 60.2 * Patch: build doc using node-js-yaml * Build-Depends node-js-yaml -- Jérémy Lal <email address hidden> Fri, 16 Mar 2018 10:25:24 +0100
Available diffs
- diff from 8.9.3~dfsg-12 to 8.10.0~dfsg-1 (2.2 MiB)
| Superseded in bionic-proposed |
nodejs (8.9.3~dfsg-12) unstable; urgency=medium
* Do not Build-Depend on licensecheck, ever.
It's not right to hog build servers.
* Drop my backport of openssl 1.1.0 compatibility,
in favor of upstream backport.
* Remove patch that dropped -march=z196 for it is now the
minimum requirement for s390x. See also #888876.
-- Jérémy Lal <email address hidden> Sun, 18 Feb 2018 21:51:10 +0100
Available diffs
| Superseded in bionic-proposed |
nodejs (8.9.3~dfsg-11ubuntu1) bionic; urgency=low
* Merge from Debian Sid. Remaining changes:
- Add debian/patches/openssl/fix_sslv3_test.patch: properly handle how
SSLv3 was disabled in openssl.
Available diffs
| Deleted in bionic-proposed (Reason: redundant upload) |
nodejs (6.12.0~dfsg-2ubuntu3) bionic; urgency=high * No change rebuild against openssl1.1. -- Dimitri John Ledkov <email address hidden> Tue, 06 Feb 2018 17:54:52 +0000
Available diffs
| Superseded in bionic-release |
| Deleted in bionic-proposed (Reason: moved to release) |
| Superseded in bionic-proposed |
nodejs (6.12.0~dfsg-2ubuntu2) bionic; urgency=medium
* Drop the Revert upstream's fix for openssl 1.0.2h, as we are now
trying to upgrade to openssl1.0.2n in Ubuntu.
-- Dimitri John Ledkov <email address hidden> Mon, 29 Jan 2018 13:06:26 +0000
Available diffs
nodejs (6.12.0~dfsg-2ubuntu1) bionic; urgency=low
* Merge from Debian Sid. Remaining changes:
- Revert upstream's fix for openssl 1.0.2h, since we still have
1.0.2g in Ubuntu.
- Add debian/patches/openssl/fix_sslv3_test.patch: properly handle how
SSLv3 was disabled in openssl.
-- Simon Quigley <email address hidden> Wed, 22 Nov 2017 17:19:36 -0600
Available diffs
nodejs (6.12.0~dfsg-1ubuntu1) bionic; urgency=medium
* Merge from Debian Sid. Remaining changes:
- Revert upstream's fix for openssl 1.0.2h, since we still have
1.0.2g in Ubuntu.
- Add debian/patches/openssl/fix_sslv3_test.patch: properly handle how
SSLv3 was disabled in openssl.
-- Simon Quigley <email address hidden> Mon, 13 Nov 2017 21:59:00 -0600
Available diffs
| Superseded in bionic-proposed |
nodejs (6.11.4~dfsg-1ubuntu3) bionic; urgency=medium * No-change rebuild for icu soname change. -- Matthias Klose <email address hidden> Tue, 07 Nov 2017 08:54:44 +0000
Available diffs
nodejs (6.11.4~dfsg-1ubuntu2) bionic; urgency=medium * No-change rebuild for libicu soname change. -- Matthias Klose <email address hidden> Wed, 25 Oct 2017 15:45:39 +0000
Available diffs
| Superseded in bionic-release |
| Obsolete in artful-release |
| Deleted in artful-proposed (Reason: moved to release) |
nodejs (6.11.4~dfsg-1ubuntu1) artful; urgency=medium
* Merge from Debian Sid. Remaining changes:
- Revert upstream's fix for openssl 1.0.2h, since we still have
1.0.2g in Ubuntu.
- Add debian/patches/openssl/fix_sslv3_test.patch: properly handle how
SSLv3 was disabled in openssl.
Available diffs
nodejs (6.11.2~dfsg-3ubuntu1) artful; urgency=low
* Merge from Debian Sid. Remaining changes:
- Revert upstream's fix for openssl 1.0.2h, since we still have
1.0.2g in Ubuntu.
- Add debian/patches/openssl/fix_sslv3_test.patch: properly handle how
SSLv3 was disabled in openssl.
Available diffs
| 51 → 100 of 161 results | First • Previous • Next • Last |
