On 16/12/2020 06.30, Khem Raj wrote:
From: Stacy Gaikovaia <[email protected]> Uprev nodejs in order to fix CVE-2020-8277. This CVE allows an attacker to trigger a DNS request for a host of their choice, which could trigger a Denial of Service in nodejs versions < 12.19.1. See https://nvd.nist.gov/vuln/detail/CVE-2020-8277 for details. CVE: CVE-2020-8277 Signed-off-by: Stacy Gaikovaia <[email protected]> Signed-off-by: Khem Raj <[email protected]>
Hi Armin, Will you please backport this to gatesgarth /Sean
-=-=-=-=-=-=-=-=-=-=-=- Links: You receive all messages sent to this group. View/Reply Online (#88549): https://lists.openembedded.org/g/openembedded-devel/message/88549 Mute This Topic: https://lists.openembedded.org/mt/78995019/21656 Group Owner: [email protected] Unsubscribe: https://lists.openembedded.org/g/openembedded-devel/unsub [[email protected]] -=-=-=-=-=-=-=-=-=-=-=-
