Skip to content

Navigation Menu

Sign in
Appearance settings

Search code, repositories, users, issues, pull requests...

Provide feedback

We read every piece of feedback, and take your input very seriously.

Saved searches

Use saved searches to filter your results more quickly
Appearance settings

Commit ff39464

Browse filesBrowse files
BethGriggsdanielleadams
BethGriggs
authored and
danielleadams
committed
doc: add OpenSSL CVE fix to notable changes in v15.5.0
PR-URL: #36798 Reviewed-By: Colin Ihrig <cjihrig@gmail.com> Reviewed-By: Myles Borins <myles.borins@gmail.com> Reviewed-By: Filip Skokan <panva.ip@gmail.com> Reviewed-By: Rich Trott <rtrott@gmail.com>
1 parent 6db465a commit ff39464
Copy full SHA for ff39464

File tree

Expand file treeCollapse file tree

1 file changed

+6
-0
lines changed
Open diff view settings
Filter options
Expand file treeCollapse file tree

1 file changed

+6
-0
lines changed
Open diff view settings
Collapse file

‎doc/changelogs/CHANGELOG_V15.md‎

Copy file name to clipboardExpand all lines: doc/changelogs/CHANGELOG_V15.md
+6Lines changed: 6 additions & 0 deletions
  • Display the source diff
  • Display the rich diff
Original file line numberDiff line numberDiff line change
@@ -77,6 +77,12 @@ Vulnerabilities fixed:
7777

7878
### Notable Changes
7979

80+
#### OpenSSL-1.1.1i
81+
82+
OpenSSL-1.1.1i contains a fix for CVE-2020-1971: OpenSSL - EDIPARTYNAME NULL pointer de-reference (High). This is a vulnerability in OpenSSL which may be exploited through Node.js. You can read more about it in https://www.openssl.org/news/secadv/20201208.txt
83+
84+
Contributed by Myles Borins [#36520](https://github.com/nodejs/node/pull/36520).
85+
8086
#### Extended support for `AbortSignal` in child_process and stream
8187

8288
The following APIs now support an `AbortSignal` in their options object:

0 commit comments

Comments
0 (0)
Morty Proxy This is a proxified and sanitized view of the page, visit original site.