Security update for nodejs
This update contains nodejs 4.2.4 and fixes the following issues:
- CVE-2015-6764: unspecified out-of-bounds access vulnerability (boo#956902)
- CVE-2015-8027: unspecified denial of service vulnerability (boo#956901)
The following non-security bugs were fixed:
- boo#948045: Nodejs 4.0 rpm does not install addon-rpm.gypi
- boo#961254: common.gypi should install at /usr/share/node and npm requires nodejs-devel
Also contains all upstream bug fixes and improvements in the 4.2.2, 4.2.3 and 4.2.4 releases.
- Submitted by Marguerite Su (MargueriteSu)
Fixed bugs
bnc#956902
VUL-0: CVE-2015-6764: nodejs: unspecified out-of-bounds access vulnerability
bnc#956901
VUL-0: CVE-2015-8027 nodejs: unspecified denial of service vulnerability
bnc#948045
Nodejs 4.0 rpm does not install addon-rpm.gypi
bnc#961254
nodejs: common.gypi should install at /usr/share/node and npm requires nodejs-devel