diff options
author | Rod Vagg <rod@vagg.org> | 2018-12-03 23:14:18 +1100 |
---|---|---|
committer | Rod Vagg <rod@vagg.org> | 2018-12-04 01:06:32 +1100 |
commit | dbdc9081fa723f62126ef857ee9365425e41dd9f (patch) | |
tree | 4be61154f383429cb4c48e60c92b1a02d89832c3 /src/node_contextify.h | |
parent | 2f11fe3663a0f23831b36ef92699d3f358e8a277 (diff) | |
download | android-node-v8-dbdc9081fa723f62126ef857ee9365425e41dd9f.tar.gz android-node-v8-dbdc9081fa723f62126ef857ee9365425e41dd9f.tar.bz2 android-node-v8-dbdc9081fa723f62126ef857ee9365425e41dd9f.zip |
2018-12-03, Version 6.15.1 'Boron' (LTS)
Notable Changes:
This is a patch release to address a bad backport of the fix for "Slowloris
HTTP Denial of Service" (CVE-2018-12122). Node.js 6.15.0 misapplies the headers
timeout to an entire keep-alive HTTP session, resulting in prematurely
disconnected sockets.
PR-URL: https://github.com/nodejs/node/pull/24803
Refs: https://github.com/nodejs/node/pull/24796
Refs: https://github.com/nodejs/node/issues/24760
Reviewed-By: Anna Henningsen <anna@addaleax.net>
Reviewed-By: Richard Lau <riclau@uk.ibm.com>
Reviewed-By: Matteo Collina <matteo.collina@gmail.com>
Diffstat (limited to 'src/node_contextify.h')
0 files changed, 0 insertions, 0 deletions