---
- branch: MAIN
  date: Fri Aug 11 05:26:49 UTC 2023
  files:
  - new: '1.17'
    old: '1.16'
    path: pkgsrc/lang/nodejs18/Makefile
    pathrev: pkgsrc/lang/nodejs18/Makefile@1.17
    type: modified
  - new: '1.10'
    old: '1.9'
    path: pkgsrc/lang/nodejs18/distinfo
    pathrev: pkgsrc/lang/nodejs18/distinfo@1.10
    type: modified
  id: 20230811T052649Z.ecd44a7a725192d1e161d98d590eacd7652ff8fc
  log: |
    nodejs18: updated to 18.17.1

    Version 18.17.1 'Hydrogen' (LTS)

    Notable Changes

    The following CVEs are fixed in this release:

    * CVE-2023-32002: Policies can be bypassed via Module.\_load (High)
    * CVE-2023-32006: Policies can be bypassed by module.constructor.createRequire (Medium)
    * CVE-2023-32559: Policies can be bypassed via process.binding (Medium)
    * OpenSSL Security Releases
  module: pkgsrc
  subject: 'CVS commit: pkgsrc/lang/nodejs18'
  unixtime: '1691731609'
  user: adam