diff --git a/.gitignore b/.gitignore index 91480ee..7605d9b 100644 --- a/.gitignore +++ b/.gitignore @@ -1,2 +1,2 @@ SOURCES/icu4c-69_1-src.tgz -SOURCES/node-v16.7.0-stripped.tar.gz +SOURCES/node-v16.8.0-stripped.tar.gz diff --git a/.nodejs.metadata b/.nodejs.metadata index 78e6dd0..0d1b2ce 100644 --- a/.nodejs.metadata +++ b/.nodejs.metadata @@ -1,2 +1,2 @@ 620a71c84428758376baa0fb81a581c3daa866ce SOURCES/icu4c-69_1-src.tgz -c20abd2bf8f1ab262d500ca27dc29475a0f7b675 SOURCES/node-v16.7.0-stripped.tar.gz +d244b5e349cdd5a520b033a4ab7d806246556168 SOURCES/node-v16.8.0-stripped.tar.gz diff --git a/SPECS/nodejs.spec b/SPECS/nodejs.spec index 250e1c7..478fa05 100644 --- a/SPECS/nodejs.spec +++ b/SPECS/nodejs.spec @@ -14,7 +14,7 @@ # This is used by both the nodejs package and the npm subpackage thar # has a separate version - the name is special so that rpmdev-bumpspec # will bump this rather than adding .1 to the end. -%global baserelease 2 +%global baserelease 1 %{?!_pkgdocdir:%global _pkgdocdir %{_docdir}/%{name}-%{version}} @@ -25,7 +25,7 @@ # than a Fedora release lifecycle. %global nodejs_epoch 1 %global nodejs_major 16 -%global nodejs_minor 7 +%global nodejs_minor 8 %global nodejs_patch 0 %global nodejs_abi %{nodejs_major}.%{nodejs_minor} # nodejs_soversion - from NODE_MODULE_VERSION in src/node_version.h @@ -118,8 +118,8 @@ # npm - from deps/npm/package.json %global npm_epoch 1 %global npm_major 7 -%global npm_minor 20 -%global npm_patch 3 +%global npm_minor 21 +%global npm_patch 0 %global npm_version %{npm_major}.%{npm_minor}.%{npm_patch} # uvwasi - from deps/uvwasi/include/uvwasi.h @@ -679,6 +679,10 @@ end %changelog +* Mon Sep 13 2021 Zuzana Svetlikova - 1:16.8.0-1 +- Resolves CVE-2021-32803, CVE-2021-32804, CVE-2021-37701, CVE-2021-37712 +- Resolves: RHBZ#1993948, RHBZ#1993941, RHBZ#2000151, RHBZ#2002176 + * Mon Aug 30 2021 Zuzana Svetlikova - 1:16.7.0-2 - Resolves CVE-2021-22930, CVE-2021-22931, CVE-2021-22939, - CVE-2021-22940, CVE-2021-32803, CVE-2021-32804, CVE-2021-3672