Node v14.16.0 (LTS)
Notable changesVulnerabilities fixed: CVE-2021-22883: HTTP2 'unknownProtocol' cause Denial of Service by resource exhaustion Affected Node.js versions are vulnerable to denial of service attacks when...
View ArticleNode v15.11.0 (Current)
Notable Changes [a3e3156b52] - (SEMVER-MINOR) crypto: make FIPS related options always awailable (Vít Ondruch) #36341 [9ba5c0f9ba] - (SEMVER-MINOR) errors: remove experimental from --enable-source-maps...
View ArticleNode v15.12.0 (Current)
Notable Changes crypto: add optional callback to crypto.sign and crypto.verify (Filip Skokan) #37500 support JWK objects in create*Key (Filip Skokan) #37254 deps: switch openssl to quictls/openssl...
View ArticleNode v12.22.0 (LTS)
Notable changesThe legacy HTTP parser is runtime deprecatedThe legacy HTTP parser, selected by the --http-parser=legacy command line option, is deprecated with the pending End-of-Life of Node.js 10.x...
View ArticleNode v15.13.0 (Current)
Notable Changes buffer: implement btoa and atob (James M Snell) #37529 deps: upgrade npm to 7.7.6 (Ruy Adorno) #37968 This update adds workspaces support to npm run and npm exec doc: add legacy status...
View ArticleApril 2021 Security Releases
SummaryThe Node.js project will release new versions of all supported release lines on or shortly after Tuesday, April 6th, 2021. Three High severity issues ImpactThe 15.x release line of Node.js is...
View ArticleNode v10.24.1 (LTS)
Notable ChangesVulerabilties fixed: CVE-2021-3450: OpenSSL - CA certificate check bypass with X509_V_FLAG_X509_STRICT (High) This is a vulnerability in OpenSSL which may be exploited through Node.js....
View ArticleNode v12.22.1 (LTS)
Notable ChangesVulnerabilities fixed: CVE-2021-3450: OpenSSL - CA certificate check bypass with X509_V_FLAG_X509_STRICT (High) This is a vulnerability in OpenSSL which may be exploited through Node.js....
View ArticleNode v14.16.1 (LTS)
Notable ChangesVulnerabilities fixed: CVE-2021-3450: OpenSSL - CA certificate check bypass with X509_V_FLAG_X509_STRICT (High) This is a vulnerability in OpenSSL which may be exploited through Node.js....
View ArticleNode v15.14.0 (Current)
Notable ChangesVulnerabilties Fixed: CVE-2021-3450: OpenSSL - CA certificate check bypass with X509_V_FLAG_X509_STRICT (High) This is a vulnerability in OpenSSL which may be exploited through Node.js....
View ArticleNode v16.0.0 (Current)
Notable ChangesDeprecations and Removals (SEMVER-MAJOR) fs: remove permissive rmdir recursive (Antoine du Hamel) #37216 (SEMVER-MAJOR) fs: runtime deprecate rmdir recursive option (Antoine du Hamel)...
View ArticleNode v16.1.0 (Current)
Notable Changes [8a90f55a05] - (SEMVER-MINOR) fs: allow no-params fsPromises fileHandle read (Nitzan Uziely) #38287 Commits [28e16488cf] - async_hooks,doc: replace process.stdout.fd with 1 (Darshan...
View ArticleNode v14.17.0 (LTS)
Notable ChangesDiagnostics channel (experimental module)diagnostics_channel is a new experimental module that provides an API to create named channels to report arbitrary message data for diagnostics...
View ArticleNode v16.2.0 (Current)
Notable Changes [36b948560c] - (SEMVER-MINOR) async_hooks: use new v8::Context PromiseHook API (Stephen Belanger) #36394 [c0deeeacb2] - lib: support setting process.env.TZ on windows (James M Snell)...
View ArticleNode v16.3.0 (Current)
Notable Changes cli: add -C alias for --conditions flag (Guy Bedford) #38755 deps: add workspaces support to npm install commands (Ruy Adorno) #38750 Commits [4e58ec4aa6] - benchmark: output...
View ArticleNode v14.17.1 (LTS)
Notable Changes [6035492c8f] - deps: update ICU to 69.1 (Michaël Zasso) #38178 [9417fd0bc8] - errors: align source-map stacks with spec (Benjamin Coe) #37252 Commits [87fa636953] - assert: refactor to...
View ArticleNode v16.4.0 (Current)
Notable changes async_hooks: stabilize part of AsyncLocalStorage (Vladimir de Turckheim) #37675 deps: upgrade npm to 7.18.1 (npm-robot) #39065 update V8 to 9.1.269.36 (Michaël Zasso) #38273 dns: allow...
View ArticleJuly 2021 Security Releases
SummaryThe Node.js project will release new versions of all supported release lines on or shortly after Thursday, July 1st, 2021. One High severity issue, and three Medium severity issues ImpactThe...
View ArticleNode v16.4.1 (Current)
Notable ChangesVulnerabilities fixed: CVE-2021-22918: libuv upgrade - Out of bounds read (Medium) Node.js is vulnerable to out-of-bounds read in libuv's uv__idna_toascii() function which is used to...
View ArticleNode v12.22.2 (LTS)
Notable ChangesVulnerabilities fixed: CVE-2021-22918: libuv upgrade - Out of bounds read (Medium) Node.js is vulnerable to out-of-bounds read in libuv's uv__idna_toascii() function which is used to...
View Article