Backport potential zlib security fix from io.js #25536

misterdjules · 2015-06-17T16:57:20Z

nodejs/node#1811 has been identified as a potential security issue, and a discussion has started around issuing a CVE. It would probably be a good idea to backport these changes and ship them in a release before a CVE is issued.

/cc @joyent/node-collaborators @trevnorris @indutny

misterdjules · 2015-06-22T23:42:35Z

Moving to milestone v0.10.40, as v0.10.39 was released today.

jasnell · 2015-06-24T02:23:28Z

+1

misterdjules added zlib P-1 labels Jun 17, 2015

misterdjules added this to the 0.10.39 milestone Jun 17, 2015

misterdjules mentioned this issue Jun 17, 2015

zlib: prevent uncaught exception in zlibBuffer nodejs/node#1811

Closed

misterdjules modified the milestones: 0.10.40, 0.10.39 Jun 22, 2015

misterdjules modified the milestones: 0.10.40, 0.10.41 Jul 10, 2015

Trott closed this as completed Apr 22, 2023

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Backport potential zlib security fix from io.js #25536

Backport potential zlib security fix from io.js #25536

misterdjules commented Jun 17, 2015

misterdjules commented Jun 22, 2015

jasnell commented Jun 24, 2015

Backport potential zlib security fix from io.js #25536

Backport potential zlib security fix from io.js #25536

Comments

misterdjules commented Jun 17, 2015

misterdjules commented Jun 22, 2015

jasnell commented Jun 24, 2015