2018-12-03, Version 6.15.1 'Boron' (LTS) - android-node-v8.git

diff options

author	Rod Vagg <rod@vagg.org>	2018-12-03 23:14:18 +1100
committer	Rod Vagg <rod@vagg.org>	2018-12-04 01:06:32 +1100
commit	dbdc9081fa723f62126ef857ee9365425e41dd9f (patch)
tree	4be61154f383429cb4c48e60c92b1a02d89832c3 /src/node_contextify.h
parent	2f11fe3663a0f23831b36ef92699d3f358e8a277 (diff)
download	android-node-v8-dbdc9081fa723f62126ef857ee9365425e41dd9f.tar.gz android-node-v8-dbdc9081fa723f62126ef857ee9365425e41dd9f.tar.bz2 android-node-v8-dbdc9081fa723f62126ef857ee9365425e41dd9f.zip

2018-12-03, Version 6.15.1 'Boron' (LTS)

Notable Changes: This is a patch release to address a bad backport of the fix for "Slowloris HTTP Denial of Service" (CVE-2018-12122). Node.js 6.15.0 misapplies the headers timeout to an entire keep-alive HTTP session, resulting in prematurely disconnected sockets. PR-URL: https://github.com/nodejs/node/pull/24803 Refs: https://github.com/nodejs/node/pull/24796 Refs: https://github.com/nodejs/node/issues/24760 Reviewed-By: Anna Henningsen <anna@addaleax.net> Reviewed-By: Richard Lau <riclau@uk.ibm.com> Reviewed-By: Matteo Collina <matteo.collina@gmail.com>

Diffstat (limited to 'src/node_contextify.h')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: