0
0
mirror of https://github.com/nodejs/node.git synced 2024-11-29 23:16:30 +01:00
nodejs/doc/changelogs
Beth Griggs d602e586bf
2020-02-06, Version 10.19.0 'Dubnium' (LTS)
This is a security release.

Vulnerabilities fixed:
* **CVE-2019-15606**:
          HTTP header values do not have trailing OWS trimmed.
* **CVE-2019-15605**:
          HTTP request smuggling using malformed Transfer-Encoding header.
* **CVE-2019-15604**:
          Remotely trigger an assertion on a TLS server with a malformed
          certificate string.

Also, HTTP parsing is more strict to be more secure. Since this may
cause problems in interoperability with some non-conformant HTTP
implementations, it is possible to disable the strict checks with the
`--insecure-http-parser` command line flag, or the `insecureHTTPParser`
http option. Using the insecure HTTP parser should be avoided.

PR-URL: https://github.com/nodejs-private/node-private/pull/198
2020-02-06 03:05:04 +00:00
..
CHANGELOG_ARCHIVE.md doc: escape brackets not used as markdown reference links 2019-10-10 22:15:58 -07:00
CHANGELOG_IOJS.md 2019-10-22, Version 13.0.0 (Current) 2019-10-22 17:12:12 +01:00
CHANGELOG_V4.md 2019-10-22, Version 13.0.0 (Current) 2019-10-22 17:12:12 +01:00
CHANGELOG_V5.md 2019-10-22, Version 13.0.0 (Current) 2019-10-22 17:12:12 +01:00
CHANGELOG_V6.md 2019-10-22, Version 13.0.0 (Current) 2019-10-22 17:12:12 +01:00
CHANGELOG_V7.md 2019-10-22, Version 13.0.0 (Current) 2019-10-22 17:12:12 +01:00
CHANGELOG_V8.md 2019-12-17, Version 8.17.0 'Carbon' (LTS) 2019-12-17 17:15:09 -05:00
CHANGELOG_V9.md 2019-10-22, Version 13.0.0 (Current) 2019-10-22 17:12:12 +01:00
CHANGELOG_V10.md 2020-02-06, Version 10.19.0 'Dubnium' (LTS) 2020-02-06 03:05:04 +00:00
CHANGELOG_V11.md 2019-10-22, Version 13.0.0 (Current) 2019-10-22 17:12:12 +01:00
CHANGELOG_V12.md 2020-02-06, Version 12.15.0 'Erbium' (LTS) 2020-02-06 02:55:47 +00:00
CHANGELOG_V13.md 2020-02-06, Version 13.8.0 (Current) 2020-02-06 02:39:39 +00:00
CHANGELOG_V010.md 2019-10-22, Version 13.0.0 (Current) 2019-10-22 17:12:12 +01:00
CHANGELOG_V012.md 2019-10-22, Version 13.0.0 (Current) 2019-10-22 17:12:12 +01:00