Debian Patches
Status for nodejs/18.20.4+dfsg-1~deb12u1
| Patch | Description | Author | Forwarded | Bugs | Origin | Last update |
|---|---|---|---|---|---|---|
| build/openssl_config_explicit_lower.patch | [PATCH] Add a CipherString for nodejs If the default security level is overwritten at build time of openssl then it is needed to lower it again for nodejs in order to pass the testsuite because it is using smoil keys. |
Sebastian Andrzej Siewior <sebastian@breakpoint.cc> | no | 2022-09-23 | ||
| build/openssl_3011_without_new_error_message.patch | debian openssl in testing or sid (3.0.11, 3.1.4) does not seem to have that different behavior | Jérémy Lal <kapouer@melix.org> | no | 2023-11-03 | ||
| build/more_shareable_builtins.patch | add acorn, walk to shared builtins | Jérémy Lal <kapouer@melix.org> | yes | 2022-09-28 | ||
| build/cctest_disable.patch | do not build cctest, build broken on debian | Jérémy Lal <kapouer@melix.org> | invalid | 2017-12-18 | ||
| build/doc.patch | build doc using marked and js-yaml While waiting for unified/remarked/rehyped modules to be available in debian | Jérémy Lal <kapouer@melix.org> | not-needed | 2021-03-03 | ||
| build/flag_atomic.patch | Link to -latomic by default This avoids surprises on mips*el/ppc*el | Jérémy Lal <kapouer@melix.org> | not-needed | upstream | 2019-10-25 | |
| build/test_ci.patch | adapt test-ci build target for buildd * run tests with ./node * remove addons from test-ci suite, because it creates a dependency loop nodejs -> node-gyp -> nodejs which is painful to manage. * disabled because it requires stdin: + test-stdout-close-unref + test-regress-GH-746 * test-tick-processor fails on ppc64 and s390x, currently investigated https://github.com/nodejs/node/issues/2471 * test-cluster-disconnect sometimes fails on busy buildd, forwarded upstream https://github.com/nodejs/node/issues/3383 * test-fs-watch is flaky, might be related to https://github.com/nodejs/node/issues/4082 * huge timeout value for all platforms, buildd could be busy * test-npm-install and test-release-npm must fail, debian package dfsg-repacked npm out * ability to override CI_NATIVE_SUITES, CI_JS_SUITES * disable tests failing because DNS is disabled * sequential/test-http2-session-timeout is flaky https://github.com/nodejs/node/issues/20628 |
Jérémy Lal <kapouer@melix.org> | not-needed | 2020-02-09 | ||
| deps/cares.patch | keep nodejs compatible with libc-ares public headers | Jérémy Lal <kapouer@melix.org> | not-needed | 2021-10-20 | ||
| deps/localhost-no-addrconfig.patch | do not use dns.ADDRCONFIG for localhost it fails on IPv6-only systems. Setting it with libc fails on linux. https://github.com/nodejs/node/issues/33279 |
Jérémy Lal <kapouer@melix.org> | yes | debian | 2020-06-11 | |
| deps/node_gyp.patch | use system-installed node-gyp for building test modules | Jérémy Lal <kapouer@melix.org> | not-needed | 2015-09-09 | ||
| dfsg/benchmark_without_alice.patch | a test uses a benchmark that read alice.html, dfsg excluded | Jérémy Lal <kapouer@melix.org> | not-needed | 2020-03-04 | ||
| dfsg/multilib_modules.patch | Multiarch search path, arch triplet, DFHS path for modules | "Bastien ROUCARIÈS" <roucaries.bastien@gmail.com> | yes | 2020-03-04 | ||
| dfsg/privacy_breach.patch | remove google font from template.html, and link to local | Jérémy Lal <kapouer@melix.org> | not-needed | 2015-09-09 | ||
| mips/compilation_error.patch | fix compilation error on mipsel target | Jérémy Lal <kapouer@melix.org> | yes | 2021-10-28 | ||
| mips/fpu.patch | use configuration directive to set mips fpu mode | YunQiang Su <wzssyqa@gmail.com> | yes | 2015-09-29 | ||
| mips/less_mem.patch | mksnapshot uses too much memory on 32-bit mipsel | Jérémy Lal <kapouer@melix.org> | yes | 2020-06-03 | ||
| mips/mipsel_is_32.patch | mipsel in debian supports 32-bit processors | Jérémy Lal <kapouer@melix.org> | not-needed | 2021-11-03 | ||
| mips/mipsel_even_register_fix.patch | fix double register usage on mipsel | Jérémy Lal <kapouer@melix.org> | invalid | 2022-06-15 | ||
| build/skip-buffer-nan-internal-check.patch | skip buffer NaN internal representation check this fails on whatever archs having other internal representations of NaN. | Jérémy Lal <kapouer@melix.org> | yes | 2022-05-02 | ||
| riscv/flaky_tests.patch | test does not pass on riscv64 | Jérémy Lal <kapouer@melix.org>, Bo YU <tsu.yubo@gmail.com> | invalid | 2022-12-14 | ||
| armel/configure.patch | allow vfp2 and allow setting arm_version option | Jérémy Lal <kapouer@melix.org> | yes | 2022-08-29 | ||
| build/doc_template_home.html | fix link to home in html api | Jérémy Lal <kapouer@melix.org> | not-needed | 2022-11-06 | ||
| build/test_process_versions.patch | Use system paths for builtins | Jérémy Lal <kapouer@melix.org> | not-needed | 2023-02-22 | ||
| arm64/stacksize.patch | Harmonize V8 stack sizes on ARM architectures to match almost all other architectures | James Addison <jay@jp-hosting.net> | yes | 2023-02-28 | ||
| build/ada.patch | build using ada upstream tarball component | Jérémy Lal <kapouer@melix.org> | not-needed | 2023-11-30 | ||
| build/disable_sea_dfsg_postject.patch | disable test because it depends on postject, which is dfsg-excluded HELP is welcome to solve this | Jérémy Lal <kapouer@melix.org> | not-needed | 2023-11-30 | ||
| build/test_runner_escape_path.patch | test runner output fails on some cwd - fix regexp | Jérémy Lal <kapouer@melix.org> | yes | 2023-11-30 | ||
| mips/flaky_tests.patch | some tests fail on mips64el and mipsel That architecture support improves over time - node 20.x branch has better support for mips64el Meanwhile, let those tests fail. |
not-needed | ||||
| build/openssl_3014.patch | openssl 3.0.14 returns a different code. | not-needed | ||||
| libuv/0000-bookworm-sync.patch | Get libuv nodejs in sync with libuv/bookworm =================================================================== |
=?utf-8?q?Bastien_Roucari=C3=A8s?= <rouca@debian.org> | not-needed | 2025-04-27 | ||
| libuv/path_max_zero_st_size | fix undefined path_max for st_size zero The downstream 'path_max' patch in Debian sets the buffer size for readlink() to the 'st_size' value obtained with lstat(). . However, it might be zero for some symlinks in /proc on Linux (notably /proc/self) leading to readlink() failing with EINVAL. . $ strace -e lstat stat /proc/self 2>&1 \ | grep -e lstat -e File: -e Size: lstat("/proc/self", {st_mode=S_IFLNK|0777, st_size=0, ...}) = 0 File: /proc/self -> 30875 Size: 0 Blocks: 0 IO Block: 1024 symbolic link . This causes readlink (tool) to files like /dev/stdin to fail, which may link to /proc/self/fd/0 on containers or elsewhere. . Test-case: . ubuntu@cosmic:~/node$ $ strace -E LD_LIBRARY_PATH=/usr/local/lib/ -f -e lstat,readlink \ node test/parallel/test-fs-realpath-pipe.js . With path_max: . [pid 17785] lstat("/dev", {st_mode=S_IFDIR|0755, st_size=480, ...}) = 0 [pid 17786] lstat("/dev/stdin", {st_mode=S_IFLNK|0777, st_size=15, ...}) = 0 [pid 17788] lstat("/dev/stdin", {st_mode=S_IFLNK|0777, st_size=15, ...}) = 0 [pid 17788] readlink("/dev/stdin", "/proc/self/fd/0", 15) = 15 . [pid 17785] lstat("/proc", {st_mode=S_IFDIR|0555, st_size=0, ...}) = 0 [pid 17786] lstat("/proc/self", {st_mode=S_IFLNK|0777, st_size=0, ...}) = 0 [pid 17788] lstat("/proc/self", {st_mode=S_IFLNK|0777, st_size=0, ...}) = 0 [pid 17788] readlink("/proc/self", 0x7f2a6c000b40, 0) = -1 EINVAL (Invalid argument) . Without path_max: . [pid 18114] lstat("/dev", {st_mode=S_IFDIR|0755, st_size=480, ...}) = 0 [pid 18114] lstat("/dev/stdin", {st_mode=S_IFLNK|0777, st_size=15, ...}) = 0 [pid 18114] readlink("/dev/stdin", "/proc/self/fd/0", 4096) = 15 . [pid 18114] lstat("/proc", {st_mode=S_IFDIR|0555, st_size=0, ...}) = 0 [pid 18114] lstat("/proc/self", {st_mode=S_IFLNK|0777, st_size=0, ...}) = 0 [pid 18114] readlink("/proc/self", "18114", 4096) = 5 . [pid 18114] lstat("/proc/18114", {st_mode=S_IFDIR|0555, st_size=0, ...}) = 0 [pid 18114] lstat("/proc/18114/fd", {st_mode=S_IFDIR|0500, st_size=0, ...}) = 0 [pid 18114] lstat("/proc/18114/fd/0", {st_mode=S_IFLNK|0700, st_size=64, ...}) = 0 [pid 18114] readlink("/proc/18114/fd/0", "socket:[199607]", 4096) = 15 . With this patch on top of path_max: . [pid 18433] lstat("/dev", {st_mode=S_IFDIR|0755, st_size=480, ...}) = 0 [pid 18433] lstat("/dev/stdin", {st_mode=S_IFLNK|0777, st_size=15, ...}) = 0 [pid 18433] lstat("/dev/stdin", {st_mode=S_IFLNK|0777, st_size=15, ...}) = 0 [pid 18433] readlink("/dev/stdin", "/proc/self/fd/0", 15) = 15 . [pid 18433] lstat("/proc", {st_mode=S_IFDIR|0555, st_size=0, ...}) = 0 [pid 18433] lstat("/proc/self", {st_mode=S_IFLNK|0777, st_size=0, ...}) = 0 [pid 18433] lstat("/proc/self", {st_mode=S_IFLNK|0777, st_size=0, ...}) = 0 [pid 18433] readlink("/proc/self", "18433", 256) = 5 . [pid 18433] lstat("/proc/18433", {st_mode=S_IFDIR|0555, st_size=0, ...}) = 0 [pid 18433] lstat("/proc/18433/fd", {st_mode=S_IFDIR|0500, st_size=0, ...}) = 0 [pid 18433] lstat("/proc/18433/fd/0", {st_mode=S_IFLNK|0700, st_size=64, ...}) = 0 [pid 18433] lstat("/proc/18433/fd/0", {st_mode=S_IFLNK|0700, st_size=64, ...}) = 0 [pid 18433] readlink("/proc/18433/fd/0", "socket:[191351]", 64) = 15 |
Mauricio Faria de Oliveira <mfo@canonical.com> | no | debian | ||
| libuv/fix-cve-2024-24806 | Fix CVE-2024-24806 From upstream change log: Merge pull request from GHSA-f74f-cvh7-c6q6 * fix: always zero-terminate idna output * fix: reject zero-length idna inputs * test: empty strings are not valid IDNA . See also https://github.com/libuv/libuv/security/advisories/GHSA-f74f-cvh7-c6q6 git diff v1.48.0~5..v1.48.0~2 =================================================================== |
yes | debian upstream | https://github.com/libuv/libuv |
All known versions for source package 'nodejs'
- 22.19.0+dfsg+~cs22.18.0-1 (experimental)
- 20.19.5+dfsg+~cs20.19.12-4 (sid)
- 20.19.4+dfsg-1 (forky)
- 20.19.2+dfsg-1 (trixie)
- 18.20.4+dfsg-1~deb12u1 (bookworm, bookworm-security)