Linuxeden开源社区
Notable changes
The following CVEs are fixed in this release:
- CVE-2022-3602: X.509 Email Address 4-byte Buffer Overflow (High)
- CVE-2022-3786: X.509 Email Address Variable Length Buffer Overflow (High)
- CVE-2022-43548: DNS rebinding in –inspect via invalid octal IP address (Medium)
More detailed information on each of the vulnerabilities can be found in November 2022 Security Releases blog post.
Commits
- [
39f8a672e3] – deps: update archs files for quictls/openssl-3.0.7+quic nodejs/node#45286 - [
80218127c8] – deps: upgrade openssl sources to quictls/openssl-3.0.7+quic nodejs/node#45286 - [
165342beac] – inspector: harden IP address validation again (Tobias Nießen) nodejs-private/node-private#354
Windows 32-bit Installer: https://nodejs.org/dist/v18.12.1/node-v18.12.1-x86.msi
Windows 64-bit Installer: https://nodejs.org/dist/v18.12.1/node-v18.12.1-x64.msi
Windows 32-bit Binary: https://nodejs.org/dist/v18.12.1/win-x86/node.exe
Windows 64-bit Binary: https://nodejs.org/dist/v18.12.1/win-x64/node.exe
macOS 64-bit Installer: https://nodejs.org/dist/v18.12.1/node-v18.12.1.pkg
macOS Apple Silicon 64-bit Binary: https://nodejs.org/dist/v18.12.1/node-v18.12.1-darwin-arm64.tar.gz
macOS Intel 64-bit Binary: https://nodejs.org/dist/v18.12.1/node-v18.12.1-darwin-x64.tar.gz
Linux 64-bit Binary: https://nodejs.org/dist/v18.12.1/node-v18.12.1-linux-x64.tar.xz
Linux PPC LE 64-bit Binary: https://nodejs.org/dist/v18.12.1/node-v18.12.1-linux-ppc64le.tar.xz
Linux s390x 64-bit Binary: https://nodejs.org/dist/v18.12.1/node-v18.12.1-linux-s390x.tar.xz
AIX 64-bit Binary: https://nodejs.org/dist/v18.12.1/node-v18.12.1-aix-ppc64.tar.gz
ARMv7 32-bit Binary: https://nodejs.org/dist/v18.12.1/node-v18.12.1-linux-armv7l.tar.xz
ARMv8 64-bit Binary: https://nodejs.org/dist/v18.12.1/node-v18.12.1-linux-arm64.tar.xz
Source Code: https://nodejs.org/dist/v18.12.1/node-v18.12.1.tar.gz
Other release files: https://nodejs.org/dist/v18.12.1/
Documentation: https://nodejs.org/docs/v18.12.1/api/