Bug 213604 - www/node: Update to 6.9.1
Summary: www/node: Update to 6.9.1
Status: Closed FIXED
Alias: None
Product: Ports & Packages
Classification: Unclassified
Component: Individual Port(s) (show other bugs)
Version: Latest
Hardware: Any Any
: Normal Affects Many People
Assignee: Mark Felder
URL: https://nodejs.org/en/blog/release/v6...
Keywords: easy, patch, security
Depends on: 213800
Blocks: 213693
  Show dependency treegraph
 
Reported: 2016-10-19 07:05 UTC by Bradley T. Hughes
Modified: 2016-10-28 13:49 UTC (History)
4 users (show)

See Also:
koobs: maintainer-feedback+
feld: merge-quarterly+

Attachments
nodejs 6.9.0 (1.19 KB, patch)
2016-10-19 07:05 UTC, Bradley T. Hughes 		bhughes: maintainer-approval+
Details | Diff
nodejs 6.9.1 (2.68 KB, patch)
2016-10-21 07:40 UTC, Bradley T. Hughes 		no flags Details | Diff
updated nodejs 6.9.1 patch (2.57 KB, patch)
2016-10-21 08:05 UTC, Bradley T. Hughes 		bhughes: maintainer-approval+
Details | Diff
Show Obsolete (2) View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Bradley T. Hughes freebsd_committer freebsd_triage 2016-10-19 07:05:11 UTC 
Created attachment 175928 [details]
nodejs 6.9.0

Bump to the latest upstream 6.x release. This is a security release and
the first Node.js v6 LTS release. See the release announcement for
details.

https://nodejs.org/en/blog/release/v6.9.0/
https://nodejs.org/en/blog/vulnerability/october-2016-security-releases/

portlint: OK (-C, spurious warning about possible direct use of "python")
testport: OK (poudriere, 11.0-R, 10.[123]-R, 9.3-R, amd64/i386, default options)
testport: OK (poudriere, 11.0-R, 10.[123]-R, 9.3-R, amd64/i386, BUNDLED_SSL)
Comment 1 Kubilay Kocak freebsd_committer freebsd_triage 2016-10-19 09:30:31 UTC 
This also needs a security/vuxml entry
Comment 2 Bradley T. Hughes freebsd_committer freebsd_triage 2016-10-21 07:40:34 UTC 
Created attachment 176008 [details]
nodejs 6.9.1

Bump to the latest upstream 6.x release. Node.js v6 is now an LTS
release, see the v6.9.0 release announcement for details. The v6.9.0
release was also a security release, while v6.9.1 fixes a regression
introduced in v6.8.0.
    
Cleanup clang vs. gcc handling by using USES=compiler:c++-lib
    
https://nodejs.org/en/blog/release/v6.9.0/
https://nodejs.org/en/blog/release/v6.9.1/
https://nodejs.org/en/blog/vulnerability/october-2016-security-releases/
Comment 3 Bradley T. Hughes freebsd_committer freebsd_triage 2016-10-21 08:05:33 UTC 
Created attachment 176010 [details]
updated nodejs 6.9.1 patch

Updated patch to fix build with gcc on 9.3-R.
Comment 4 Bradley T. Hughes freebsd_committer freebsd_triage 2016-10-26 10:29:31 UTC 
See 213800 for vuxml entries :)
Comment 5 commit-hook freebsd_committer freebsd_triage 2016-10-28 13:47:38 UTC 
A commit references this bug:

Author: feld
Date: Fri Oct 28 13:47:27 UTC 2016
New revision: 424843
URL: https://svnweb.freebsd.org/changeset/ports/424843

Log:
  www/node: Update to 6.9.1

  Bump to the latest upstream 6.x release. Node.js v6 is now an LTS
  release, see the v6.9.0 release announcement for details. The v6.9.0
  release was also a security release, while v6.9.1 fixes a regression
  introduced in v6.8.0.

  Cleanup clang vs. gcc handling by using USES=compiler:c++-lib

  https://nodejs.org/en/blog/release/v6.9.0/
  https://nodejs.org/en/blog/release/v6.9.1/
  https://nodejs.org/en/blog/vulnerability/october-2016-security-releases/

  PR:		213604
  Security:	CVE-2016-5180

Changes:
  head/www/node/Makefile
  head/www/node/distinfo
Comment 6 commit-hook freebsd_committer freebsd_triage 2016-10-28 13:49:40 UTC 
A commit references this bug:

Author: feld
Date: Fri Oct 28 13:49:10 UTC 2016
New revision: 424844
URL: https://svnweb.freebsd.org/changeset/ports/424844

Log:
  MFH: r423979 r424843

  www/node: Update to 6.9.1

  Bump to the latest upstream 6.x release. Node.js v6 is now an LTS
  release, see the v6.9.0 release announcement for details. The v6.9.0
  release was also a security release, while v6.9.1 fixes a regression
  introduced in v6.8.0.

  Cleanup clang vs. gcc handling by using USES=compiler:c++-lib

  https://nodejs.org/en/blog/release/v6.9.0/
  https://nodejs.org/en/blog/release/v6.9.1/
  https://nodejs.org/en/blog/vulnerability/october-2016-security-releases/

  PR:		213604
  Security:	CVE-2016-5180

  Approved by:	ports-secteam (with hat)

Changes:
_U  branches/2016Q4/
  branches/2016Q4/www/node/Makefile
  branches/2016Q4/www/node/distinfo
  branches/2016Q4/www/node/files/patch-node.gyp