Node v0.10.29 (Stable)
2014.06.05, Version 0.10.29 (Stable) openssl: to 1.0.1h (CVE-2014-0224) npm: upgrade to 1.4.14 utf8: Prevent Node from sending invalid UTF-8 (Felix Geisendörfer) NOTE this introduces a breaking...
View ArticleNode v0.8.27 (Maintenance)
2014.06.09, Version 0.8.27 (maintenance) openssl: update to 1.0.0m (CVE-2014-0224) utf8: Prevent Node from sending invalid UTF-8 (Felix Geisendörfer) NOTE this introduces a breaking change, previously...
View ArticleOpenSSL and Breaking UTF-8 Change (fixed in Node v0.8.27 and v0.10.29)
Today we are releasing new versions of Node: node-v0.8.27 node-v0.10.29 First and foremost these releases address the current OpenSSL vulnerability CVE-2014-0224, for both 0.8 and 0.10 we've upgraded...
View ArticleBuilding Node.js Together
Node.js is reaching more people than ever, it's attracting new and interesting use cases, at the same time as seeing heavy adoption from traditional engineering departments. Managing the project to...
View ArticleNode v0.10.30 (Stable)
2014.07.31, Version 0.10.30 (Stable) uv: Upgrade to v0.10.28 npm: Upgrade to v1.4.21 v8: Interrupts must not mask stack overflow. Revert "stream: start old-mode read in a next tick" (Fedor Indutny)...
View ArticleNode v0.8.28 (Maintenance)
2014.07.31, Version 0.8.28 (maintenance) v8: Interrupts must not mask stack overflow. (Fedor Indutny) Source Code: http://nodejs.org/dist/v0.8.28/node-v0.8.28.tar.gz Macintosh Installer (Universal):...
View ArticleV8 Memory Corruption and Stack Overflow (fixed in Node v0.8.28 and v0.10.30)
A memory corruption vulnerability, which results in a denial-of-service, was identified in the versions of V8 that ship with Node.js 0.8 and 0.10. In certain circumstances, a particularly deep...
View ArticleNode v0.10.31 (Stable)
2014.08.19, Version 0.10.31 (Stable) v8: backport CVE-2013-6668 openssl: Update to v1.0.1i npm: Update to v1.4.23 cluster: disconnect should not be synchronous (Sam Roberts) fs: fix fs.readFileSync fd...
View ArticleNode v0.10.32 (Stable)
2014.09.16, Version 0.10.32 (Stable) npm: Update to 1.4.28 v8: fix a crash introduced by previous release (Fedor Indutny) configure: add --openssl-no-asm flag (Fedor Indutny) crypto: use domains for...
View ArticleNode v0.11.14 (Unstable)
2014.09.24, Version 0.11.14 (Unstable) uv: Upgrade to v1.0.0-rc1 http_parser: Upgrade to v2.3.0 npm: Upgrade to v2.0.0 openssl: Upgrade to v1.0.1i v8: Upgrade to 3.26.33 Add fast path for simple URL...
View ArticleNode v0.10.33 (Stable)
This release handles the recent POODLE vulnerability by disabling SSLv2/SSLv3 by default for the most predominate uses of TLS in Node.js. It took longer than expected to get this release accomplished...
View ArticleAdvisory Board Update
A lot has been happening in Node.js, so I wanted bring everyone up to date on where we are with regards to the advisory board, its working groups, and the release of v0.12. The interim advisory board...
View ArticleListening to the Community
We assembled the Node.js Advisory Board (AB) to listen to the community and make the necessary changes to have a unified direction for Node.js, a passionate group of developers, a vibrant ecosystem of...
View ArticleNode v0.10.34 (Stable)
2014.12.17, Version 0.10.34 (Stable) uv: update to v0.10.30 zlib: upgrade to v1.2.8 child_process: check execFile args is an array (Sam Roberts) child_process: check fork args is an array (Sam Roberts)...
View ArticleNode v0.10.35 (Stable)
2014.12.22, Version 0.10.35 (Stable) tls: re-add 1024-bit SSL certs removed by f9456a2 (Chris Dickinson) timers: don't close interval timers when unrefd (Julien Gilli) timers: don't mutate unref list...
View ArticleNode v0.11.15 (Unstable)
2015.01.20, Version 0.11.15 (Unstable) v8: Upgrade to 3.28.73 uv: Upgrade to 1.0.2 npm: Upgrade to v2.1.6 uv: float patch to revert tty breakage (Trevor Norris) v8: re-implement debugger-agent (Fedor...
View ArticleNode v0.10.36 (Stable)
2015.01.26, Version 0.10.36 (Stable) openssl: update to 1.0.1l v8: Fix debugger and strict mode regression (Julien Gilli) v8: don't busy loop in cpu profiler thread (Ben Noordhuis) Source Code:...
View ArticleNode v0.11.16 (Unstable)
2015.01.29, Version 0.11.16 (Unstable) openssl: Upgrade to 1.0.1l npm: Upgrade to 2.3.0 url: revert support of path for url.format (Julien Gilli) assert: use util.inspect() to create error messages...
View ArticleNode v0.12.0 (Stable)
We are excited to announce the availability of Node.js v0.12! It has been a long process, and we want to thank contributors and all of the community who waited patiently for this event. Node.js has...
View ArticleNode v0.10.37 (Maintenance)
2015.03.11, Version 0.10.37 (Maintenance) This release comes with a fix for CVE-2015-0278, which was a vulnerability in libuv < 0.10.34 caused by insufficient priviledges dropping. More info about...
View Article