Vulnerabilities

• 09 AugWednesday August 9th 2023 Security Releases
• 20 JunTuesday June 20 2023 Security Releases
• 16 FebThursday February 16 2023 Security Releases
• 16 DecOpenSSL 3.0.7 update assessment
• 01 NovNov 3 2022 Security Releases
• 28 OctOpenSSL November Security Release
• 24 OctOpenSSL and zlib update assessment, and Node.js Assessment workflow
• 15 SeptSeptember 23rd 2022 Security Releases
• 07 JulJuly 7th 2022 Security Releases
• 21 JunOpenSSL update assessment, and Node.js project plans
• 05 MayOpenSSL update assessment, and Node.js project plans
• 18 MarOpenSSL security releases require Node.js security releases
• 11 JanJanuary 10th 2022 Security Releases
• 12 OctOctober 12th 2021 Security Releases
• 31 AugAugust 31 2021 Security Releases
• 11 AugAugust 2021 Security Releases
• 29 JulJuly 2021 Security Releases
• 01 JulJuly 2021 Security Releases
• 06 AprApril 2021 Security Releases
• 23 FebFebruary 2021 Security Releases
• 04 JanJanuary 2021 Security Releases
• 16 NovNovember 2020 Security Releases
• 15 SeptSeptember 2020 Security Releases
• 02 JunJune 2020 Security Releases
• 21 AprOpenSSL security releases do not require Node.js security releases
• 06 FebFebruary 2020 Security Releases
• 18 DecDecember 2019 Security Releases
• 12 SeptOpenSSL security releases do not require Node.js security releases
• 05 SeptOpenSSL security releases may require Node.js security releases
• 16 AugAugust 2019 Security Releases
• 28 FebFebruary 2019 Security Releases
• 28 NovNovember 2018 Security Releases
• 11 AugAugust 2018 Security Releases
• 12 JunJune 2018 Security Releases
• 21 MarMarch 2018 Security Releases
• 08 JanMeltdown and Spectre - Impact On Node.js
• 08 DecData Confidentiality/Integrity Vulnerability, December 2017
• 30 OctOpenSSL update, 1.0.2m
• 24 OctDOS security vulnerability, October 2017
• 29 SeptPath validation vulnerability, September 2017
• 11 JulSecurity updates for all active release lines, July 2017
• 27 JanOpenSSL update, 1.0.2k
• 15 OctOctober security releases and v6 LTS "Boron" security inclusions
• 23 SeptSecurity updates for all active release lines, September 2016
• 13 JunSecurity updates for all active release lines, June 2016
• 02 MayOpenSSL updates, 1.0.1t and 1.0.2h
• 31 Marnpm security updates v2.15.1 and v3.8.3
• 29 FebOpenSSL updates, 1.0.2g and 1.0.1s
• 09 FebFebruary 2016 Security Release Summary
• 27 JanOpenSSL upgrade low-severity Node.js security fixes
• 04 DecDecember Security Release Summary
• 01 DecDecember Security Release Schedule Update
• 25 NovCVE-2015-8027 Denial of Service Vulnerability / CVE-2015-6764 V8 Out-of-bounds Access Vulnerability
• 31 JulV8 Memory Corruption and Stack Overflow (fixed in Node v0.8.28 and v0.10.30)
• 16 JunOpenSSL and Breaking UTF-8 Change (fixed in Node v0.8.27 and v0.10.29)
• 22 OctDoS Vulnerability (fixed in Node v0.8.26 and v0.10.21)
• 07 MayHTTP Server Security Vulnerability: Please upgrade to 0.6.17