News from 2022
-
Node v17.4.0 (Current)
- [
ef6f98c2e3] - (SEMVER-MINOR) child_process: add support for URL tocp.fork(Antoine du Hamel) #41225 - [
d62fe315c2] - (SEMVER-MINOR) crypto: alias webcrypto.subtle and webcrypto.getRandomValues on crypto (James M Snell) #41266 - [
fcb37e9ce5] - doc: add Mesteery to collaborators (Mestery) #41543 - [
4079fc42b7] - (SEMVER-MINOR) events: graduate capturerejections to supported (James M Snell) #41267 - [
fe21607901] - (SEMVER-MINOR) events: add EventEmitterAsyncResource to core (James M Snell) #41246 - [
6d8eb6ace6] - (SEMVER-MINOR) loader: return package format from defaultResolve if known (Gabriel Bota) #40980 - [
27c619140a] - (SEMVER-MINOR) perf_hooks: multiple fixes for Histogram (James M Snell) #41153 - [
09c25bb224] - (SEMVER-MINOR) stream: add filter method to readable (Benjamin Gruenbaum, Robert Nagy) #41354 - [
1150963217] - (SEMVER-MINOR) stream: add isReadable helper (Robert Nagy) #41199 - [
9f5a873965] - (SEMVER-MINOR) stream: add map method to Readable (Benjamin Gruenbaum, Robert Nagy) #40815
- [
-
January 10th 2022 Security Releases
Updates are now available for the v17.x, v16.x, v14.x, and v12.x Node.js release lines for the following issues.
Accepting arbitrary Subject Alternative Name (SAN) types, unless a PKI is specifically defined to use a particular SAN type, can result in bypassing name-constrained intermediates. Node.js was accepting URI SAN types, which PKIs are often not defined to use. Additionally, when a protocol allows URI SANs, Node.js did not match the URI correctly.
- Node v16.13.2 (LTS)
- Node v14.18.3 (LTS)
- Node v17.3.1 (Current)
- Node v12.22.9 (LTS)