This release contains a security fix for the http server implementation, please upgrade as soon as possible. For more information, see http://ur1.ca/fwrj8.

2013.10.18, node.js Version 0.10.21 (Stable)

  • crypto: clear errors from verify failure (Timothy J Fontaine)

  • dtrace: interpret two byte strings (Dave Pacheco)

  • fs: fix fs.truncate() file content zeroing bug (Ben Noordhuis)

  • http: provide backpressure for pipeline flood (isaacs)

  • tls: fix premature connection termination (Ben Noordhuis)

2013.10.19, libuv Version 0.10.18 (Stable)

  • unix: fix uv_spawn() NULL pointer deref on ENOMEM (Ben Noordhuis)

  • unix: don't close inherited fds on uv_spawn() fail (Ben Noordhuis)

  • unix: revert recent FSEvent changes (Ben Noordhuis)

  • unix: fix non-synchronized access in signal.c (Ben Noordhuis)

This update has been submitted for testing by patches.

7 years ago

This update is currently being pushed to the Fedora EPEL 6 testing updates repository.

7 years ago

This update has been pushed to testing

7 years ago
User Icon humaton provided feedback 7 years ago
karma

This update has reached 14 days in testing and can be pushed to stable now if the maintainer wishes

6 years ago

This update has been submitted for stable by patches.

6 years ago

This update is currently being pushed to the Fedora EPEL 6 stable updates repository.

6 years ago

This update has been pushed to stable

6 years ago

Please login to add feedback.

Metadata
Type
security
Karma
1
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Stable by Karma
disabled
Stable by Time
disabled
Dates
submitted
7 years ago
in testing
7 years ago
in stable
6 years ago
modified
7 years ago
BZ#1021170 CVE-2013-4450 NodeJS: HTTP Pipelining DoS
0
0
BZ#1021172 CVE-2013-4450 NodeJS: HTTP Pipelining DoS [epel-6]
0
0

Automated Test Results