node-linux-s390x 20.19.6 → 20.20.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/CHANGELOG.md +33 -0
- package/bin/node +0 -0
- package/include/node/node_version.h +2 -2
- package/include/node/v8-array-buffer.h +7 -0
- package/package.json +1 -1
package/CHANGELOG.md
CHANGED
|
@@ -9,6 +9,7 @@
|
|
|
9
9
|
</tr>
|
|
10
10
|
<tr>
|
|
11
11
|
<td>
|
|
12
|
+
<a href="#20.20.0">20.20.0</a><br/>
|
|
12
13
|
<a href="#20.19.6">20.19.6</a><br/>
|
|
13
14
|
<a href="#20.19.5">20.19.5</a><br/>
|
|
14
15
|
<a href="#20.19.4">20.19.4</a><br/>
|
|
@@ -75,6 +76,38 @@
|
|
|
75
76
|
* [io.js](CHANGELOG_IOJS.md)
|
|
76
77
|
* [Archive](CHANGELOG_ARCHIVE.md)
|
|
77
78
|
|
|
79
|
+
<a id="20.20.0"></a>
|
|
80
|
+
|
|
81
|
+
## 2026-01-13, Version 20.20.0 'Iron' (LTS), @marco-ippolito
|
|
82
|
+
|
|
83
|
+
This is a security release.
|
|
84
|
+
|
|
85
|
+
### Notable Changes
|
|
86
|
+
|
|
87
|
+
lib:
|
|
88
|
+
|
|
89
|
+
* (CVE-2025-55132) disable futimes when permission model is enabled (RafaelGSS) <https://github.com/nodejs-private/node-private/pull/802>
|
|
90
|
+
* (CVE-2025-59465) add TLSSocket default error handler (RafaelGSS) <https://github.com/nodejs-private/node-private/pull/797>
|
|
91
|
+
lib,permission:
|
|
92
|
+
* (CVE-2025-55130) require full read and write to symlink APIs (RafaelGSS) <https://github.com/nodejs-private/node-private/pull/760>
|
|
93
|
+
src:
|
|
94
|
+
* (CVE-2025-59466) rethrow stack overflow exceptions in async\_hooks (Matteo Collina) <https://github.com/nodejs-private/node-private/pull/773>
|
|
95
|
+
src,lib:
|
|
96
|
+
* (CVE-2025-55131) refactor unsafe buffer creation to remove zero-fill toggle (Сковорода Никита Андреевич) <https://github.com/nodejs-private/node-private/pull/759>
|
|
97
|
+
tls:
|
|
98
|
+
* (CVE-2026-21637) route callback exceptions through error handlers (Matteo Collina) <https://github.com/nodejs-private/node-private/pull/796>
|
|
99
|
+
|
|
100
|
+
### Commits
|
|
101
|
+
|
|
102
|
+
* \[[`8f9ba3f623`](https://github.com/nodejs/node/commit/8f9ba3f623)] - **deps**: update c-ares to v1.34.6 (Node.js GitHub Bot) [#60997](https://github.com/nodejs/node/pull/60997)
|
|
103
|
+
* \[[`97fc9b0eb7`](https://github.com/nodejs/node/commit/97fc9b0eb7)] - **deps**: update undici to 6.23.0 (Matteo Collina) [nodejs-private/node-private#792](https://github.com/nodejs-private/node-private/pull/792)
|
|
104
|
+
* \[[`14fbbb510c`](https://github.com/nodejs/node/commit/14fbbb510c)] - **(CVE-2025-55132)** **lib**: disable futimes when permission model is enabled (RafaelGSS) [nodejs-private/node-private#802](https://github.com/nodejs-private/node-private/pull/802)
|
|
105
|
+
* \[[`1febc48d5b`](https://github.com/nodejs/node/commit/1febc48d5b)] - **(CVE-2025-59465)** **lib**: add TLSSocket default error handler (RafaelGSS) [nodejs-private/node-private#797](https://github.com/nodejs-private/node-private/pull/797)
|
|
106
|
+
* \[[`494f62dc23`](https://github.com/nodejs/node/commit/494f62dc23)] - **(CVE-2025-55130)** **lib,permission**: require full read and write to symlink APIs (RafaelGSS) [nodejs-private/node-private#760](https://github.com/nodejs-private/node-private/pull/760)
|
|
107
|
+
* \[[`d7a5c587c0`](https://github.com/nodejs/node/commit/d7a5c587c0)] - **(CVE-2025-59466)** **src**: rethrow stack overflow exceptions in async\_hooks (Matteo Collina) [nodejs-private/node-private#773](https://github.com/nodejs-private/node-private/pull/773)
|
|
108
|
+
* \[[`51f4de4b4a`](https://github.com/nodejs/node/commit/51f4de4b4a)] - **(CVE-2025-55131)** **src,lib**: refactor unsafe buffer creation to remove zero-fill toggle (Сковорода Никита Андреевич) [nodejs-private/node-private#759](https://github.com/nodejs-private/node-private/pull/759)
|
|
109
|
+
* \[[`85f73e7057`](https://github.com/nodejs/node/commit/85f73e7057)] - **(CVE-2026-21637)** **tls**: route callback exceptions through error handlers (Matteo Collina) [nodejs-private/node-private#796](https://github.com/nodejs-private/node-private/pull/796)
|
|
110
|
+
|
|
78
111
|
<a id="20.19.6"></a>
|
|
79
112
|
|
|
80
113
|
## 2025-11-25, Version 20.19.6 'Iron' (LTS), @marco-ippolito
|
package/bin/node
CHANGED
|
Binary file
|
|
@@ -23,8 +23,8 @@
|
|
|
23
23
|
#define SRC_NODE_VERSION_H_
|
|
24
24
|
|
|
25
25
|
#define NODE_MAJOR_VERSION 20
|
|
26
|
-
#define NODE_MINOR_VERSION
|
|
27
|
-
#define NODE_PATCH_VERSION
|
|
26
|
+
#define NODE_MINOR_VERSION 20
|
|
27
|
+
#define NODE_PATCH_VERSION 0
|
|
28
28
|
|
|
29
29
|
#define NODE_VERSION_IS_LTS 1
|
|
30
30
|
#define NODE_VERSION_LTS_CODENAME "Iron"
|
|
@@ -244,6 +244,13 @@ class V8_EXPORT ArrayBuffer : public Object {
|
|
|
244
244
|
*/
|
|
245
245
|
static std::unique_ptr<BackingStore> NewBackingStore(Isolate* isolate,
|
|
246
246
|
size_t byte_length);
|
|
247
|
+
/**
|
|
248
|
+
* Returns a new standalone BackingStore with uninitialized memory and
|
|
249
|
+
* return nullptr on failure.
|
|
250
|
+
* This variant is for not breaking ABI on Node.js LTS. DO NOT USE.
|
|
251
|
+
*/
|
|
252
|
+
static std::unique_ptr<BackingStore> NewBackingStoreForNodeLTS(
|
|
253
|
+
Isolate* isolate, size_t byte_length);
|
|
247
254
|
/**
|
|
248
255
|
* Returns a new standalone BackingStore that takes over the ownership of
|
|
249
256
|
* the given buffer. The destructor of the BackingStore invokes the given
|