Skip to content

v17.7.2 proposal #42381

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
richardlau merged 5 commits into from
Mar 18, 2022
Merged

v17.7.2 proposal #42381

Show file tree
Hide file tree
Changes from 1 commit
Commits
Show all changes
5 commits
Select commit Hold shift + click to select a range
457e31e
test: renew certificates for specific test
lpinca Mar 15, 2022
b8d0906
deps: upgrade openssl sources to quictls/openssl-3.0.2+quic
hassaanp Mar 16, 2022
55e293e
deps: update archs files for quictls/openssl-3.0.2+quic
hassaanp Mar 16, 2022
c8b6d92
test: fix tests affected by OpenSSL update
mhdawson Mar 15, 2022
db3d882
2022-03-17, Version 17.7.2 (Current)
richardlau Mar 17, 2022
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
Prev Previous commit
2022-03-17, Version 17.7.2 (Current) 
This is a security release.

Notable changes:

Update to OpenSSL 3.0.2, which addresses the following vulnerability:
- Infinite loop in BN_mod_sqrt() reachable when parsing certificates (High)(CVE-2022-0778)
  More details are available at https://www.openssl.org/news/secadv/20220315.txt

PR-URL: #42381
  • Loading branch information
@richardlau
richardlau committed Mar 17, 2022
commit db3d88267f618b8f19464d1178421e1cb1651fb5
3 changes: 2 additions & 1 deletion CHANGELOG.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -33,7 +33,8 @@ release.
</tr>
<tr>
<td valign="top">
<b><a href="doc/changelogs/CHANGELOG_V17.md#17.7.1">17.7.1</a></b><br/>
<b><a href="doc/changelogs/CHANGELOG_V17.md#17.7.2">17.7.2</a></b><br/>
<a href="doc/changelogs/CHANGELOG_V17.md#17.7.1">17.7.1</a><br/>
<a href="doc/changelogs/CHANGELOG_V17.md#17.7.0">17.7.0</a><br/>
<a href="doc/changelogs/CHANGELOG_V17.md#17.6.0">17.6.0</a><br/>
<a href="doc/changelogs/CHANGELOG_V17.md#17.5.0">17.5.0</a><br/>
Expand Down
21 changes: 21 additions & 0 deletions doc/changelogs/CHANGELOG_V17.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -8,6 +8,7 @@
</tr>
<tr>
<td>
<a href="#17.7.2">17.7.2</a><br/>
<a href="#17.7.1">17.7.1</a><br/>
<a href="#17.7.0">17.7.0</a><br/>
<a href="#17.6.0">17.6.0</a><br/>
Expand Down Expand Up @@ -42,6 +43,26 @@
* [io.js](CHANGELOG_IOJS.md)
* [Archive](CHANGELOG_ARCHIVE.md)

<a id="17.7.2"></a>

## 2022-03-17, Version 17.7.2 (Current), @richardlau

This is a security release.

### Notable Changes

Update to OpenSSL 3.0.2, which addresses the following vulnerability:

* Infinite loop in `BN_mod_sqrt()` reachable when parsing certificates (High)(CVE-2022-0778)
More details are available at <https://www.openssl.org/news/secadv/20220315.txt>

### Commits

* \[[`55e293e05f`](https://github.com/nodejs/node/commit/55e293e05f)] - **deps**: update archs files for quictls/openssl-3.0.2+quic (Hassaan Pasha) [#42356](https://github.com/nodejs/node/pull/42356)
* \[[`b8d090603d`](https://github.com/nodejs/node/commit/b8d090603d)] - **deps**: upgrade openssl sources to quictls/openssl-3.0.2+quic (Hassaan Pasha) [#42356](https://github.com/nodejs/node/pull/42356)
* \[[`c8b6d92af0`](https://github.com/nodejs/node/commit/c8b6d92af0)] - **test**: fix tests affected by OpenSSL update (Michael Dawson) [#42356](https://github.com/nodejs/node/pull/42356)
* \[[`457e31ea09`](https://github.com/nodejs/node/commit/457e31ea09)] - **test**: renew certificates for specific test (Luigi Pinca) [#42342](https://github.com/nodejs/node/pull/42342)

<a id="17.7.1"></a>

## 2022-03-10, Version 17.7.1 (Current), @BethGriggs prepared by @sxa
Expand Down
2 changes: 1 addition & 1 deletion src/node_version.h
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -29,7 +29,7 @@
#define NODE_VERSION_IS_LTS 0
#define NODE_VERSION_LTS_CODENAME ""

#define NODE_VERSION_IS_RELEASE 0
#define NODE_VERSION_IS_RELEASE 1

#ifndef NODE_STRINGIFY
#define NODE_STRINGIFY(n) NODE_STRINGIFY_HELPER(n)
Expand Down