From 6aef6e043b0e28ed53677129b5d34325fda6d8b7 Mon Sep 17 00:00:00 2001
From: Hirokazu MORIKAWA <morikw2@gmail.com>
Date: Thu, 9 Apr 2020 11:39:53 +0900
Subject: node: update to v12.18.3

upgrade npm to 6.14.6
update openssl to 1.1.1g

Vulnerabilities fixed:
* CVE-2020-8172: TLS session reuse can lead to host certificate verification bypass (High).
* CVE-2020-11080: HTTP/2 Large Settings Frame DoS (Low).
* CVE-2020-8174: napi_get_value_string_*() allows various kinds of memory corruption (High).

Signed-off-by: Hirokazu MORIKAWA <morikw2@gmail.com>
---
 lang/node/patches/003-path.patch | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'lang/node/patches/003-path.patch')

diff --git a/lang/node/patches/003-path.patch b/lang/node/patches/003-path.patch
index 63fe78b6a..c49fa7912 100644
--- a/lang/node/patches/003-path.patch
+++ b/lang/node/patches/003-path.patch
@@ -1,6 +1,6 @@
 --- a/lib/internal/modules/cjs/loader.js
 +++ b/lib/internal/modules/cjs/loader.js
-@@ -1260,7 +1260,8 @@
+@@ -1239,7 +1239,8 @@
      path.resolve(process.execPath, '..') :
      path.resolve(process.execPath, '..', '..');
  
-- 
cgit v1.2.3