Index index by Group index by Distribution index by Vendor index by creation date index by Name Mirrors Help Search

nodejs20-devel-20.10.0-2.1 RPM for s390x

From OpenSuSE Ports Tumbleweed for s390x

Name: nodejs20-devel Distribution: openSUSE:Factory:zSystems
Version: 20.10.0 Vendor: openSUSE
Release: 2.1 Build date: Thu Jan 4 18:08:08 2024
Group: Development/Languages/NodeJS Build host: s390zl29
Size: 1223061 Source RPM: nodejs20-20.10.0-2.1.src.rpm
Summary: Development headers for NodeJS 20.x
This package provides development headers for Node.js needed for creation
of binary modules.






* Tue Jan 02 2024 Adam Majer <>
  - c-ares-fixes.patch: fixes unit tests for new c-ares
* Thu Nov 23 2023 Adam Majer <> - 20.10.0
  - Update to 20.10.0:
    * --experimental-default-type flag to flip module defaults
    * The new flag --experimental-detect-module can be used to
    automatically run ES modules when their syntax can be detected.
    * Added flush option in file system functions for fs.writeFile functions
    * Added experimental WebSocket client
    * vm: fix V8 compilation cache support for vm.Script. This fixes
    performance regression since v16.x when support for
    importModuleDynamically was added to vm.Script
    For details, see
  - nodejs20-zlib-1.3.patch: upstreamed, removed
  - fix_ci_tests.patch, node-gyp-addon-gypi.patch: refreshed
* Thu Nov 09 2023 Adam Majer <>
  - Update to 20.9.0:
    * No changes, just LTS transition
* Fri Oct 27 2023 Adam Majer <>
  - fix_ci_tests.patch: adapt for openssl 3.1.4
* Tue Oct 24 2023 Dominique Leuenberger <>
  - Add nodejs20-zlib-1.3.patch: Support zlib version with only
    major.minor versions, like zlib 1.3.
* Mon Oct 16 2023 Adam Majer <> - 20.8.1
  - Security fixes relase 20.8.1
    * (CVE-2023-44487, bsc#1216190): nghttp2 Security Release
    * (CVE-2023-45143, bsc#1216205): undici Security Release
    * (CVE-2023-39332, bsc#1216271): Path traversal through path stored in Uint8Array
    * (CVE-2023-39331, bsc#1216270): Permission model improperly protects against path traversal
    * (CVE-2023-38552, bsc#1216272): Integrity checks according to policies can be circumvented
    * (CVE-2023-39333, bsc#1216273): Code injection via WebAssembly export names
  - fix_ci_tests.patch: refreshed
* Thu Oct 05 2023 Adam Majer <> - 20.8.0
  - Update to 20.8.0:
    * Stream performance improvements
    * Rework of memory management in vm APIs with the importModuleDynamically
    * test_runner:
      + accept testOnly in run
      + add junit reporter
  - fix_ci_tests.patch: refreshed
* Tue Sep 19 2023 Adam Majer <> - 20.7.0
  - Update to 20.7.0:
    * src: support multiple --env-file declarations
    * deps: upgrade npm to 10.1.0
    * doc: move and rename loaders section
    * lib: add api to detect whether source-maps are enabled
    * src,permission: add multiple allow-fs-* flags
    * test_runner: expose location of tests
  - z13.patch: upstreamed
* Mon Sep 18 2023 Adam Majer <>
  - Update to 20.6.1:
    * f0ff63fbc32ea55f3d92c5c89fdb91ec47786859.patch: removed, upstreamed
* Fri Sep 08 2023 Adam Majer <>
  - f0ff63fbc32ea55f3d92c5c89fdb91ec47786859.patch: fixes issues with
    Angular and other software that tries to load ECM modules in
    somewhat circular fashion ending up with multiple executions.
* Tue Sep 05 2023 Adam Majer <> - 20.6.0
  - Update to 20.6.0:
    * add support for .env files to configure envrionment variables
    * import.meta.resolve unflagged
    * deps: npm updated to 9.8.1
  - nodejs.keyring: updated to include current upstream releasers
* Fri Aug 25 2023 Adam Majer <>
  - Temporarily bundle ICU for SLE15 SP6 (jsc#PED-4819)
* Thu Aug 10 2023 Adam Majer <>
  - Update to version 20.5.1:
    * (CVE-2023-32002, bsc#1214150): Policies can be bypassed
      via Module._load (High)
    * (CVE-2023-32558, bsc#1214155): process.binding() can bypass
      the permission model through path traversal (High)
    * (CVE-2023-32004, bsc#1214152): Permission model can be bypassed
      by specifying a path traversal sequence in a Buffer (High)
    * (CVE-2023-32006, bsc#1214156): Policies can be bypassed
      by module.constructor.createRequire (Medium)
    * (CVE-2023-32559, bsc#1214154): Policies can be bypassed
      via process.binding (Medium)
    * (CVE-2023-32005, bsc#1214153): fs.statfs can bypass
      the permission model (Low)
    * (CVE-2023-32003, bsc#1214151): fs.mkdtemp() and fs.mkdtempSync()
      can bypass the permission model (Low)
  - Changes in 20.5.0:
    * events: allow safely adding listener to abortSignal
    * fs: add a fast-path for readFileSync utf-8
    * test_runner: add shards support
  - Changes in 20.4.0:
    * tls: add ALPNCallback server option for dynamic ALPN negotiation
    * adds support for ECMAScript Explicit Resource Management
    * adds Mock Timer support to test module
    For details see,
    versioned.patch: refreshed
* Wed Jun 21 2023 Adam Majer <>
  - Update to version 20.3.1 (security fixes only). The following
    CVEs are fixed in this release:
    * (CVE-2023-30581, bsc#1212574): mainModule.__proto__ Bypass
      Experimental Policy Mechanism (High)
    * (CVE-2023-30584, bsc#1212575): Path Traversal Bypass in
      Experimental Permission Model (High)
    * (CVE-2023-30587, bsc#1212576): Bypass of Experimental
      Permission Model via Node.js Inspector (High)
    * (CVE-2023-30582, bsc#1212577): Inadequate Permission Model
      Allows Unauthorized File Watching (Medium)
    * (CVE-2023-30583, bsc#1212578): Bypass of Experimental
      Permission Model via fs.openAsBlob() (Medium)
    * (CVE-2023-30585, bsc#1212579): Privilege escalation via
      Malicious Registry Key manipulation during Node.js
      installer repair process (Medium)
    * (CVE-2023-30586, bsc#1212580): Bypass of Experimental
      Permission Model via Arbitrary OpenSSL Engines (Medium)
    * (CVE-2023-30588, bsc#1212581): Process interuption due to invalid
      Public Key information in x509 certificates (Medium)
    * (CVE-2023-30589, bsc#1212582): HTTP Request Smuggling via
      Empty headers separated by CR (Medium)
    * (CVE-2023-30590, bsc#1212583): DiffieHellman does not
      generate keys after setting a private key (Medium)
* Thu Jun 15 2023 Adam Majer <>
  - Update to version 20.3.0:
    * deps: upgrade to libuv 1.45.0, including significant performance
      improvements to file system operations on Linux
    * module: change default resolver to not throw on unknown scheme
    * stream: deprecate asIndexedPairs
  - versioned.patch, fix_ci_tests.patch: refreshed
  - openssl3_1-adapt_tests.patch: upstreamed and removed
    For details see,
* Mon May 22 2023 Adam Majer <>
  - Fix build on SLE12SP5
* Fri May 19 2023 Adam Majer <>
  - Update to version 20.2.0:
    * http: prevent writing to the body when not allowed by HTTP spec
    * sea: add option to disable the experimental SEA warning
    * test_runner: add skip, todo, and only shorthands to test
    * url: add value argument to URLSearchParams has and delete methods
    For details see,
* Mon May 15 2023 Adam Majer <>
  - fix_ci_tests.patch: increase default timeout on unit tests
    to 20min from 2min. This seems to have lead to build failures
    on some platforms, like s390x in Factory. (bsc#1211407)
* Fri May 12 2023 Adam Majer <>
  - z13.patch: fixes illegal instruction error on z13 and older s390
* Wed May 10 2023 Otto Hollmann <>
  - Adapt tests for OpenSSL 3.1 [bsc#1209430]
    * Add openssl3_1-adapt_tests.patch
* Thu May 04 2023 Adam Majer <> - 20.1.0
  - Update to version 20.1.0
      assert: deprecate CallTracker
      dns: expose getDefaultResultOrder
      doc: add KhafraDev to collaborators
      fs: add recursive option to readdir and opendir
      fs: add support for mode flag to specify the copy behavior
      of the cp methods
      http: add highWaterMark option http.createServer
      stream: preserve object mode in compose
      test_runner: add testNamePatterns to run API
      test_runner: execute before hook on test
      test_runner: support combining coverage reports
      wasi: make returnOnExit true by default
* Wed Apr 19 2023 Adam Majer <> - 20.0.0
  - Package new version 20.0.0
    For overview of changes and details since 19.x and earlier see
  - imported the following patches from prior patches:
    + cares_public_headers.patch
    + fix_ci_tests.patch
    + flaky_test_rerun.patch
    + legacy_python.patch
    + linker_lto_jobs.patch
    + manual_configure.patch
    + node-gyp-addon-gypi.patch
    + node-gyp-config.patch
    + nodejs-libpath.patch
    + npm_search_paths.patch
    + openssl_binary_detection.patch
    + qemu_timeouts_arches.patch
    + skip_no_console.patch
    + sle12_python3_compat.patch
    + test-skip-y2038-on-32bit-time_t.patch
    + versioned.patch



Generated by rpm2html 1.8.1

Fabrice Bellet, Sat Mar 9 12:50:11 2024