Nezir Zahirovic
Nezir Zahirovic

OpenSSL security releases may require Node.js security releases | Node.js

The OpenSSL project announced this week that they will be releasing versions 1.0.2t and 1.1.1d on the 10th of September, UTC. The releases will fix two security defects that are labelled as "LOW" severity under their security policy, meaning they are:... issues such as those that only affect the openssl command line utility, or unlikely configurations.Node.js v8.x use OpenSSL v1.0.2 and Node.js v10.x and v12.x both use OpenSSL v1.1.1, therefore all active release lines are impacted by this update.At this stage, due to embargo, the exact nature of these defects is uncertain as well as the impact they will have on Node.js users.


OpenSSL security releases may require Node.js security releases | Node.js #javascriptba #javascript #nodejs #reactjs #angularjs #vuejs #meteorjs #typecscript #jquery #emberjs #bosnia