diff options
author | Myles Borins <mylesborins@google.com> | 2017-12-07 15:14:20 -0500 |
---|---|---|
committer | Myles Borins <mylesborins@google.com> | 2017-12-07 18:53:50 -0500 |
commit | 381f5ec383dbb164cf3edd1a9de1811cf1cfdc65 (patch) | |
tree | 883b7c55fe14df35e6bde0ad53f2eed344fbfa50 | |
parent | 6314a46c483c24810003399ad951c144acd81eef (diff) | |
download | node-new-v6.12.2-proposal.tar.gz |
2017-12-08, Version 6.12.2 'Boron' (LTS)v6.12.2v6.12.2-proposal
This is a security release. All Node.js users should consult the
security release summary at
https://nodejs.org/en/blog/vulnerability/december-2017-security-releases/
for details on patched vulnerabilities.
Fixes for the following CVEs are included in this release:
* CVE-2017-15896
* CVE-2017-3738 (from the openssl project)
Notable Changes:
* deps:
* openssl updated to 1.0.2n (Shigeki Ohtsu)
https://github.com/nodejs/node/pull/17526
PR-URL: https://github.com/nodejs/node/pull/17533
-rw-r--r-- | CHANGELOG.md | 3 | ||||
-rw-r--r-- | doc/changelogs/CHANGELOG_V6.md | 26 | ||||
-rw-r--r-- | src/node_version.h | 2 |
3 files changed, 29 insertions, 2 deletions
diff --git a/CHANGELOG.md b/CHANGELOG.md index fbe6611679..60054c0778 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -26,7 +26,8 @@ release. </tr> <tr> <td valign="top"> -<b><a href="doc/changelogs/CHANGELOG_V6.md#6.12.1">6.12.1</a></b><br/> +<b><a href="doc/changelogs/CHANGELOG_V6.md#6.12.2">6.12.2</a></b><br/> +<a href="doc/changelogs/CHANGELOG_V6.md#6.12.1">6.12.1</a><br/> <a href="doc/changelogs/CHANGELOG_V6.md#6.12.0">6.12.0</a><br/> <a href="doc/changelogs/CHANGELOG_V6.md#6.11.5">6.11.5</a><br/> <a href="doc/changelogs/CHANGELOG_V6.md#6.11.4">6.11.4</a><br/> diff --git a/doc/changelogs/CHANGELOG_V6.md b/doc/changelogs/CHANGELOG_V6.md index 2d54488168..dffe344620 100644 --- a/doc/changelogs/CHANGELOG_V6.md +++ b/doc/changelogs/CHANGELOG_V6.md @@ -7,6 +7,7 @@ </tr> <tr> <td valign="top"> +<a href="#6.12.2">6.12.2</a><br/> <a href="#6.12.1">6.12.1</a><br/> <a href="#6.12.0">6.12.0</a><br/> <a href="#6.11.5">6.11.5</a><br/> @@ -56,6 +57,31 @@ [Node.js Long Term Support Plan](https://github.com/nodejs/LTS) and will be supported actively until April 2018 and maintained until April 2019. +<a id="6.12.2"></a> +## 2017-12-08, Version 6.12.2 'Boron' (LTS), @MylesBorins + +This is a security release. All Node.js users should consult the security release summary at https://nodejs.org/en/blog/vulnerability/december-2017-security-releases/ for details on patched vulnerabilities. + +Fixes for the following CVEs are included in this release: + +* CVE-2017-15896 +* CVE-2017-3738 (from the openssl project) + +### Notable Changes + +* **deps**: + * openssl updated to 1.0.2n (Shigeki Ohtsu) [#17526](https://github.com/nodejs/node/pull/17526) + +### Commits + +* [[`6314a46c48`](https://github.com/nodejs/node/commit/6314a46c48)] - **deps**: update openssl asm and asm_obsolete files (Shigeki Ohtsu) [#17526](https://github.com/nodejs/node/pull/17526) +* [[`f2121a8583`](https://github.com/nodejs/node/commit/f2121a8583)] - **deps**: add -no_rand_screen to openssl s_client (Shigeki Ohtsu) [nodejs/io.js#1836](https://github.com/nodejs/io.js/pull/1836) +* [[`741651cc4b`](https://github.com/nodejs/node/commit/741651cc4b)] - **deps**: fix asm build error of openssl in x86_win32 (Shigeki Ohtsu) [iojs/io.js#1389](https://github.com/iojs/io.js/pull/1389) +* [[`5956aead33`](https://github.com/nodejs/node/commit/5956aead33)] - **deps**: fix openssl assembly error on ia32 win32 (Fedor Indutny) [iojs/io.js#1389](https://github.com/iojs/io.js/pull/1389) +* [[`ac53d01646`](https://github.com/nodejs/node/commit/ac53d01646)] - **deps**: copy all openssl header files to include dir (Shigeki Ohtsu) [#17526](https://github.com/nodejs/node/pull/17526) +* [[`03651ad9d6`](https://github.com/nodejs/node/commit/03651ad9d6)] - **deps**: upgrade openssl sources to 1.0.2n (Shigeki Ohtsu) [#17526](https://github.com/nodejs/node/pull/17526) +* [[`eb30387c6d`](https://github.com/nodejs/node/commit/eb30387c6d)] - **openssl**: fix keypress requirement in apps on win32 (Shigeki Ohtsu) [iojs/io.js#1389](https://github.com/iojs/io.js/pull/1389) + <a id="6.12.1"></a> ## 2017-12-05, Version 6.12.1 'Boron' (LTS), @MylesBorins diff --git a/src/node_version.h b/src/node_version.h index f5a9ddf846..b8befa6412 100644 --- a/src/node_version.h +++ b/src/node_version.h @@ -8,7 +8,7 @@ #define NODE_VERSION_IS_LTS 1 #define NODE_VERSION_LTS_CODENAME "Boron" -#define NODE_VERSION_IS_RELEASE 0 +#define NODE_VERSION_IS_RELEASE 1 #ifndef NODE_STRINGIFY #define NODE_STRINGIFY(n) NODE_STRINGIFY_HELPER(n) |