[El-errata] ELSA-2020-2848 Important: Oracle Linux 8 nodejs:10 security update

Tue Jul 14 18:57:38 PDT 2020

Oracle Linux Security Advisory ELSA-2020-2848

http://linux.oracle.com/errata/ELSA-2020-2848.html

The following updated rpms for Oracle Linux 8 have been uploaded to the 
Unbreakable Linux Network:

x86_64:
nodejs-10.21.0-3.module+el8.2.0+7635+4ebb0540.x86_64.rpm
nodejs-devel-10.21.0-3.module+el8.2.0+7635+4ebb0540.x86_64.rpm
nodejs-docs-10.21.0-3.module+el8.2.0+7635+4ebb0540.noarch.rpm
nodejs-full-i18n-10.21.0-3.module+el8.2.0+7635+4ebb0540.x86_64.rpm
nodejs-nodemon-1.18.3-1.module+el8.1.0+5392+4d6b561f.noarch.rpm
nodejs-packaging-17-3.module+el8.1.0+5392+4d6b561f.noarch.rpm
npm-6.14.4-1.10.21.0.3.module+el8.2.0+7635+4ebb0540.x86_64.rpm

aarch64:
nodejs-10.21.0-3.module+el8.2.0+7635+4ebb0540.aarch64.rpm
nodejs-devel-10.21.0-3.module+el8.2.0+7635+4ebb0540.aarch64.rpm
nodejs-docs-10.21.0-3.module+el8.2.0+7635+4ebb0540.noarch.rpm
nodejs-full-i18n-10.21.0-3.module+el8.2.0+7635+4ebb0540.aarch64.rpm
nodejs-nodemon-1.18.3-1.module+el8.1.0+5392+4d6b561f.noarch.rpm
nodejs-packaging-17-3.module+el8.1.0+5392+4d6b561f.noarch.rpm
npm-6.14.4-1.10.21.0.3.module+el8.2.0+7635+4ebb0540.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates/nodejs-10.21.0-3.module+el8.2.0+7635+4ebb0540.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates/nodejs-nodemon-1.18.3-1.module+el8.1.0+5392+4d6b561f.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates/nodejs-packaging-17-3.module+el8.1.0+5392+4d6b561f.src.rpm

Description of changes:

nodejs
[1:10.21.0-3]
- Resolves: RHBZ#1845306
- Remove brotli-devel requires from nodejs-devel

[1:10.21.0-2]
- Resolves: RHBZ#1845306
- Turn off debug builds

[1:10.21.0-1]
- Security update to 10.21.0
- Resolves: RHBZ#1845306
- Fixes CVE-2020-11080, CVE-2020-8174, CVE-2020-10531
- Bundle brotli, because --shared-brotli configure option is missing
- Add i18n subpackage