Changelog for
npm9-9.10.1-3.1.x86_64.rpm :
Thu Apr 5 14:00:00 2018 adam.majerAATTsuse.de
- Install license with %license, not %doc (bsc#1082318)
Wed Apr 4 14:00:00 2018 adam.majerAATTsuse.de
- Fix some node-gyp permissions
Tue Apr 3 14:00:00 2018 adam.majerAATTsuse.de
- New upstream release 9.10.1:
* Security fixes:
+ Fix for inspector DNS rebinding vulnerability
(bsc#1087463, CVE-2018-7160)
+ Fix for \'path\' module regular expression denial of service
(bsc#1087459, CVE-2018-7158)
+ Reject spaces in HTTP Content-Length header values
(bsc#1087453, CVE-2018-7159)
* cluster: Add support for NODE_OPTIONS=\"--inspect\"
* crypto: Expose the public key of a certificate
* n-api: Add napi_fatal_exception to trigger an uncaughtException
in JavaScript
* path: Fix regression in posix.normalize
* stream: Improve stream creation performance
* update bundled OpenSSL for codestreams older than SLE12:SP2
Thu Mar 22 13:00:00 2018 adam.majerAATTsuse.de
- New upstream release 9.9.0:
* assert: From now on all error messages produced by assert in
strict mode will produce a error diff.
* crypto: allow passing null as IV unless required
* fs: support as and as+ flags in stringToFlags()
* tls: expose Finished messages in TLSSocket
* tty: Add getColorDepth function to determine if terminal
supports colors.
* util: add util.inspect compact option
- Changes in version 9.8.0:
* crypto: add cert.fingerprint256 as SHA256 fingerprint
* http2: Fixed issues with aborted connections
* loader: --inspect-brk now works properly for esmodules
* src: make process.dlopen() load well-known symbol
* trace_events: add file pattern cli option
- remove any old manpage files in %pre from before update-alternatives
were used to manage symlinks to these manpages.
Fri Mar 2 13:00:00 2018 adam.majerAATTsuse.de
- New upstream release 9.7.1/9.7.0:
* deps: libuv updated to 1.19.2
* src: Add initial support for Node.js-specific post-mortem metadata
* timers: return value of setImmediate() now has ref() and unref()
* util: platform-specific error codes now have string representation
- Changes in version 9.6.0:
* async_hooks:
+ deprecate unsafe emit{Before,After}
+ rename PromiseWrap.parentId to PromiseWrap.isChainedPromise
* deps:
+ update node-inspect to 1.11.3
+ ICU 60.2 bump
+ Introduce ScriptOrModule and HostDefinedOptions to V8
* http: add options to http.createServer() for IncomingMessage and
ServerReponse
* http2: add http fallback options to .createServer
* https: Adds the remaining options from tls.createSecureContext()
to the string generated by Agent#getName(). This allows
https.request() to accept the options and generate unique
sockets appropriately.
* inspector: --inspect-brk for es modules
* lib: allow process kill by signal number
* module: enable dynamic import
* n-api: add methods to open/close callback scope
* src: allow --perf-(basic-)?prof in NODE_OPTIONS
* vm: add support for es modules
- gyp_to_python3.patch: attempt to add support for python3.
- fix_ci_tests.patch, versioned.patch: refreshed
Tue Feb 13 13:00:00 2018 adam.majerAATTsuse.de
- Add Recommends and BuildRequire on python2 for npm. node-gyp
requires this old version of python for now. This is only needed
for binary modules.
Wed Feb 7 13:00:00 2018 adam.majerAATTsuse.de
- Fix spec file typo
- Use gcc7 on Leap 42.3
Thu Feb 1 13:00:00 2018 adam.majerAATTsuse.de
- New upstream release 9.5.0:
* cluster: add cwd to cluster.settings
* deps: libuv upgraded to 1.19.1
* n-api: expose n-api version in proces.versions
* perf_hooks: add performance.clear()
* stream: avoid writeAfterEnd()
- Changes in release 9.4.0:
* async_hooks: deprecate AsyncHooks Sensitive API and
runInAsyncIdScope. Neither was documented.
* deps:
+ upgrade nghttp2 to 1.29.0
+ upgrade npm to 5.6.0
* http2:
+ implement maxSessionMemory
+ add initial support for originSet
+ add altsvc support
+ perf_hooks integration
* net: remove Socket.prototype.listen
* repl: show lexically scoped vars in tab completion
* stream:
+ remove writeableState.length and readableState.length
+ add flow and buffer properties to streams
* util: allow windcards in NODE_DEBUG variable
* zlib: add ArrayBuffer support
Tue Jan 30 13:00:00 2018 roAATTsuse.de
- even on recent codestreams there is no binutils gold on s390
only on s390x
Wed Jan 10 13:00:00 2018 adam.majerAATTsuse.de
- nodejs-sle11-python26-check_output.patch: refreshed
Fri Dec 22 13:00:00 2017 adam.majerAATTsuse.de
- Enable CI tests in %check target
+ fix_ci_tests.patch:
- DNS queries in buildroots are failing with EAI_AGAIN
- disable test-module-loading-globalpaths.js - we have
hardcoded global paths
+ versioned.patch: call versioned node binary for tests
- node-gyp-addon-gypi.patch: fix typo allowing unit tests to compile
Fri Dec 15 13:00:00 2017 adam.majerAATTsuse.de
- New upstream release 9.3.0:
* async_hooks:
+ add trace events to async_hooks
+ add provider types for net server
* console: console.debug can now be used outside of the inspector
* deps:
+ upgrade libuv to 1.18.0
+ patch V8 to 6.2.414.46
* module.builtinModules will return a list of built in modules
* n-api: add helper for addons to get the event loop
* process:
+ process.setUncaughtExceptionCaptureCallback can now be used
to customize behavior for --abort-on-uncaught-exception
+ A signal handler is now able to receive the signal code that
triggered the handler.
* stream: writable.writableHighWaterMark and
readable.readableHighWaterMark will return the values the
stream object with which it was instantiated.
- Dropped 8334.diff - no longer needed
Sat Dec 9 13:00:00 2017 qantas94heavyAATTgmail.com
- New upstream release 9.2.1:
* buffer: buffers allocated with an invalid content will now be
zero filled
[ CVE-2017-15897 ]
* deps/openssl: updated to 1.0.2n (only applies to SLE 12 SP1
and lower) (bsc#1072322)
[ CVE-2017-3738 CVE-2017-15896 ]
- Remove unnecessary curl BuildRequires
- Enable gold linker on s390x (TW and SLE/Leap 15)
- Build with bundled ICU if system ICU not available (only applies
to SLE 11/12 and Leap 42.x)
Wed Nov 29 13:00:00 2017 qantas94heavyAATTgmail.com
- Change BuildRequires from openssl-devel to libopenssl-1_0_0-devel
due to Tumbleweed/Leap 15 change to OpenSSL 1.1.0 as default
Thu Nov 16 13:00:00 2017 adam.majerAATTsuse.de
- Update nodejs.keyring based on current Release Team as found on
https://github.com/nodejs/node#release-team
- New upstream version 9.2.0
* crypto: Support building with both OpenSSL 1.1.0
* fs: fs.realpathSync.native and fs.realpath.native are now exposed
* process: expose process.ppid
Mon Nov 13 13:00:00 2017 adam.majerAATTsuse.de
- Fix permissions of node-gyp. This should be executable to allow
building of binary node modules.
Fri Nov 10 13:00:00 2017 adam.majerAATTsuse.de
- New upstream version 9.1.0
* cli: NODE_OPTIONS now supports the --stack-trace-limit option.
* http:
+ A \'connect\' event handler leak has been fixed.
+ The 103 Early Hints status code is now supported.
- Changes in upstream version 9.0.0
* async: Older experimental APIs have been removed.
* errors: The assignment of static error codes to Node.js errors
* child_processes: Errors are emitted on process nextTick.
* domains: The long-deprecated .dispose() method has been removed
* fs:
+ fs.ReadStream and fs.WriteStream classes now use destroy().
+ module callbacks are now invoked with an undefined context.
* HTTP/1:
+ 400 Bad Request response will now be sent when parsing fails.
+ Socket timeout will be set when the socket connects.
+ A bug causing the request \'error\' event to fire twice is fixed.
+ HTTP clients may now use generic Duplex streams in addition
to net.Socket.
* intl: The deprecated Intl.v8BreakIterator has been removed.
* os: The os.EOL property is now read-only
* timers: setTimeout() will emit a warning if the timeout is
larger that the maximum 32-bit unsigned integer.
- .changes file trimmed to only include changes relative to 9.x
line. If you would like to see older changes, please see
nodejs8 package.
- icu59.patch 0f3e69db.patch: removed empty patches