Skip to content

Commit d9dafb3

Browse files
evanlucasevanlucas
committed
2017-12-08 Version 9.2.1 (Current)
Notable changes: * **buffer**: * buffer allocated with an invalid content will now be zero filled (Anna Henningsen) #17428 * **deps**: * openssl updated to 1.0.2n (Shigeki Ohtsu) #17526 PR-URL: #17531
1 parent 71cf21a commit d9dafb3

File tree

4 files changed

+36
-3
lines changed

4 files changed

+36
-3
lines changed

CHANGELOG.md

Lines changed: 2 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -29,7 +29,8 @@ release.
2929
</tr>
3030
<tr>
3131
<td valign="top">
32-
<b><a href="doc/changelogs/CHANGELOG_V9.md#9.2.0">9.2.0</a></b><br/>
32+
<b><a href="doc/changelogs/CHANGELOG_V9.md#9.2.1">9.2.1</a></b><br/>
33+
<a href="doc/changelogs/CHANGELOG_V9.md#9.2.0">9.2.0</a><br/>
3334
<a href="doc/changelogs/CHANGELOG_V9.md#9.1.0">9.1.0</a><br/>
3435
<a href="doc/changelogs/CHANGELOG_V9.md#9.0.0">9.0.0</a><br/>
3536
</td>

doc/api/buffer.md

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -511,7 +511,7 @@ console.log(buf2.toString());
511511
<!-- YAML
512512
added: v5.10.0
513513
changes:
514-
- version: REPLACEME
514+
- version: v9.2.1
515515
pr-url: https://github.com/nodejs/node/pull/17428
516516
description: Specifying an invalid string for `fill` now results in a
517517
zero-filled buffer.

doc/changelogs/CHANGELOG_V9.md

Lines changed: 32 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -6,6 +6,7 @@
66
</tr>
77
<tr>
88
<td>
9+
<a href="#9.2.1">9.2.1</a><br/>
910
<a href="#9.2.0">9.2.0</a><br/>
1011
<a href="#9.1.0">9.1.0</a><br/>
1112
<a href="#9.0.0">9.0.0</a><br/>
@@ -24,6 +25,37 @@
2425
* [io.js](CHANGELOG_IOJS.md)
2526
* [Archive](CHANGELOG_ARCHIVE.md)
2627

28+
<a id="9.2.1"></a>
29+
## 2017-12-08, Version 9.2.1 (Current), @evanlucas
30+
31+
This is a security release. All Node.js users should consult the security release summary at https://nodejs.org/en/blog/vulnerability/december-2017-security-releases/ for details on patched vulnerabilities.
32+
33+
Fixes for the following CVEs are included in this release:
34+
35+
* CVE-2017-15896
36+
* CVE-2017-15897
37+
* CVE-2017-3738 (from the openssl project)
38+
39+
### Notable Changes
40+
41+
* **buffer**:
42+
* buffer allocated with an invalid content will now be zero filled (Anna Henningsen) [#17428](https://github.com/nodejs/node/pull/17428)
43+
* **deps**:
44+
* openssl updated to 1.0.2n (Shigeki Ohtsu) [#17526](https://github.com/nodejs/node/pull/17526)
45+
46+
### Commits
47+
48+
* [[`15bf640668`](https://github.com/nodejs/node/commit/15bf640668)] - **buffer**: zero-fill buffer allocated with invalid content (Anna Henningsen) [#17428](https://github.com/nodejs/node/pull/17428)
49+
* [[`c0954f4ba1`](https://github.com/nodejs/node/commit/c0954f4ba1)] - **deps**: update openssl asm and asm_obsolete files (Shigeki Ohtsu) [#17526](https://github.com/nodejs/node/pull/17526)
50+
* [[`dfd7cd3038`](https://github.com/nodejs/node/commit/dfd7cd3038)] - **deps**: add -no_rand_screen to openssl s_client (Shigeki Ohtsu) [nodejs/io.js#1836](https://github.com/nodejs/io.js/pull/1836)
51+
* [[`76e7ff2915`](https://github.com/nodejs/node/commit/76e7ff2915)] - **deps**: fix asm build error of openssl in x86_win32 (Shigeki Ohtsu) [iojs/io.js#1389](https://github.com/iojs/io.js/pull/1389)
52+
* [[`593f21ee9c`](https://github.com/nodejs/node/commit/593f21ee9c)] - **deps**: fix openssl assembly error on ia32 win32 (Fedor Indutny) [iojs/io.js#1389](https://github.com/iojs/io.js/pull/1389)
53+
* [[`235c78f968`](https://github.com/nodejs/node/commit/235c78f968)] - **deps**: copy all openssl header files to include dir (Shigeki Ohtsu) [#17526](https://github.com/nodejs/node/pull/17526)
54+
* [[`b0ebe5cb4b`](https://github.com/nodejs/node/commit/b0ebe5cb4b)] - **deps**: upgrade openssl sources to 1.0.2n (Shigeki Ohtsu) [#17526](https://github.com/nodejs/node/pull/17526)
55+
* [[`99fc75e9bc`](https://github.com/nodejs/node/commit/99fc75e9bc)] - **doc**: warn against filling buffer with invalid data (Anna Henningsen) [#17428](https://github.com/nodejs/node/pull/17428)
56+
* [[`71cf21a846`](https://github.com/nodejs/node/commit/71cf21a846)] - **http2**: use correct connect event for TLS Socket (James M Snell) [#17328](https://github.com/nodejs/node/pull/17328)
57+
* [[`e14c0babe0`](https://github.com/nodejs/node/commit/e14c0babe0)] - **openssl**: fix keypress requirement in apps on win32 (Shigeki Ohtsu) [iojs/io.js#1389](https://github.com/iojs/io.js/pull/1389)
58+
2759
<a id="9.2.0"></a>
2860
## 2017-11-14, Version 9.2.0 (Current), @evanlucas
2961

src/node_version.h

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -26,7 +26,7 @@
2626
#define NODE_MINOR_VERSION 2
2727
#define NODE_PATCH_VERSION 1
2828

29-
#define NODE_VERSION_IS_RELEASE 0
29+
#define NODE_VERSION_IS_RELEASE 1
3030

3131
#ifndef NODE_STRINGIFY
3232
#define NODE_STRINGIFY(n) NODE_STRINGIFY_HELPER(n)

0 commit comments

Comments
 (0)