From f4c366f005c8294efecfbef895ae85d4a1c4e74f Mon Sep 17 00:00:00 2001 From: Jörg Krause Date: Thu, 18 Feb 2016 09:05:06 +0100 Subject: package/nodejs: security bump for 0.10.x to version 0.10.42 MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Fixes security vulnerabilites [1]: - CVE-2016-2086 - CVE-2016-2216 Also switch to the xz compressed tar file now available for v0.10 builds from v0.10.42 onward. [1] https://nodejs.org/en/blog/vulnerability/february-2016-security-releases/ Signed-off-by: Jörg Krause Signed-off-by: Peter Korsgaard --- .../0001-remove-python-bz2-dependency.patch | 27 ---------------------- 1 file changed, 27 deletions(-) delete mode 100644 package/nodejs/0.10.41/0001-remove-python-bz2-dependency.patch (limited to 'package/nodejs/0.10.41/0001-remove-python-bz2-dependency.patch') diff --git a/package/nodejs/0.10.41/0001-remove-python-bz2-dependency.patch b/package/nodejs/0.10.41/0001-remove-python-bz2-dependency.patch deleted file mode 100644 index 75fe437502..0000000000 --- a/package/nodejs/0.10.41/0001-remove-python-bz2-dependency.patch +++ /dev/null @@ -1,27 +0,0 @@ -Remove dependency on Python bz2 module - -The Python bz2 module is only needed in certain cases, so only import -it when needed. In the normal nodejs build, this allows to remove the -dependency on this module. - -Signed-off-by: Thomas Petazzoni -Index: b/deps/v8/tools/js2c.py -=================================================================== ---- a/deps/v8/tools/js2c.py -+++ b/deps/v8/tools/js2c.py -@@ -33,7 +33,6 @@ - - import os, re, sys, string - import jsmin --import bz2 - - - def ToCAsciiArray(lines): -@@ -344,6 +343,7 @@ - else: - raw_sources_declaration = RAW_SOURCES_COMPRESSION_DECLARATION - if env['COMPRESSION'] == 'bz2': -+ import bz2 - all_sources = bz2.compress("".join(all_sources)) - total_length = len(all_sources) - sources_data = ToCArray(all_sources) -- cgit v1.2.3