Created attachment 175926 [details] nodejs 0.12.17 Bump to the latest 0.12.x release. This is a security release to address the c-ares single-byte buffer overwrite, CVE-2016-5180. https://nodejs.org/en/blog/release/v0.12.17/ https://nodejs.org/en/blog/vulnerability/october-2016-security-releases/ portlint: OK (-C, looks fine.) testport: OK (poudriere: 11.0-R, 10.[123]-R, 9.3-R, amd64/i386, default options)
This also needs a security/vuxml entry
See 213800 for vuxml entries :)
A commit references this bug: Author: feld Date: Fri Oct 28 13:52:04 UTC 2016 New revision: 424846 URL: https://svnweb.freebsd.org/changeset/ports/424846 Log: www/node012: Update to 0.12.17 Bump to the latest 0.12.x release. This is a security release to address the c-ares single-byte buffer overwrite, CVE-2016-5180. https://nodejs.org/en/blog/release/v0.12.17/ https://nodejs.org/en/blog/vulnerability/october-2016-security-releases/ PR: 213602 MFH: 2016Q4 Security: CVE-2016-5180 Changes: head/www/node012/Makefile head/www/node012/distinfo
A commit references this bug: Author: feld Date: Fri Oct 28 13:52:37 UTC 2016 New revision: 424847 URL: https://svnweb.freebsd.org/changeset/ports/424847 Log: MFH: r424846 www/node012: Update to 0.12.17 Bump to the latest 0.12.x release. This is a security release to address the c-ares single-byte buffer overwrite, CVE-2016-5180. https://nodejs.org/en/blog/release/v0.12.17/ https://nodejs.org/en/blog/vulnerability/october-2016-security-releases/ PR: 213602 Security: CVE-2016-5180 Approved by: ports-secteam (with hat) Changes: _U branches/2016Q4/ branches/2016Q4/www/node012/Makefile branches/2016Q4/www/node012/distinfo