package/nodejs: security bump for 0.10.x to version 0.10.42

Fixes security vulnerabilites [1]: - CVE-2016-2086 - CVE-2016-2216 Also switch to the xz compressed tar file now available for v0.10 builds from v0.10.42 onward. [1] https://nodejs.org/en/blog/vulnerability/february-2016-security-releases/ Signed-off-by: Jörg Krause <joerg.krause@embedded.rocks> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
LairdCP · Feb 20, 2017 · b0d4dc9 · b0d4dc9
1 parent bc0333f
commit b0d4dc9
Show file tree

Hide file tree

Showing 8 changed files with 3 additions and 7 deletions.
diff --git a/...1/0001-remove-python-bz2-dependency.patch → ...2/0001-remove-python-bz2-dependency.patch b/...1/0001-remove-python-bz2-dependency.patch → ...2/0001-remove-python-bz2-dependency.patch
diff --git a/...2-gyp-force-link-command-to-use-CXX.patch → ...2-gyp-force-link-command-to-use-CXX.patch b/...2-gyp-force-link-command-to-use-CXX.patch → ...2-gyp-force-link-command-to-use-CXX.patch
diff --git a/...js/0.10.41/0003-use-python-variable.patch → ...js/0.10.42/0003-use-python-variable.patch b/...js/0.10.41/0003-use-python-variable.patch → ...js/0.10.42/0003-use-python-variable.patch
diff --git a/.../0004-fix-musl-USE-MISC-build-issue.patch → .../0004-fix-musl-USE-MISC-build-issue.patch b/.../0004-fix-musl-USE-MISC-build-issue.patch → .../0004-fix-musl-USE-MISC-build-issue.patch
diff --git a/...0.41/0005-Fix-support-for-uClibc-ng.patch → ...0.42/0005-Fix-support-for-uClibc-ng.patch b/...0.41/0005-Fix-support-for-uClibc-ng.patch → ...0.42/0005-Fix-support-for-uClibc-ng.patch
diff --git a/package/nodejs/Config.in b/package/nodejs/Config.in
@@ -44,7 +44,7 @@ config BR2_PACKAGE_NODEJS_V8_ARCH_SUPPORTS
 config BR2_PACKAGE_NODEJS_VERSION_STRING
 	string
 	default "5.6.0"		if BR2_PACKAGE_NODEJS_V8_ARCH_SUPPORTS
-	default "0.10.41"
+	default "0.10.42"
 
 menu "Module Selection"
 

diff --git a/package/nodejs/nodejs.hash b/package/nodejs/nodejs.hash
@@ -1,5 +1,5 @@
-# From upstream URL: http://nodejs.org/dist/v0.10.41/SHASUMS256.txt
-sha256	79f694e2a5c42543b75d0c69f6860499d7593136d0f6b59e7163b9e66fb2c995  node-v0.10.41.tar.gz
+# From upstream URL: http://nodejs.org/dist/v0.10.42/SHASUMS256.txt
+sha256  9b4cc1b5bc397d80dfe217625b04bb6212a3b5a8b1e0eb36000a30d7ae567b8a  node-v0.10.42.tar.xz
 
 # From upstream URL: http://nodejs.org/dist/v5.6.0/SHASUMS256.txt
 sha256  588341e466ac72f6b8e9fa500f04edf149f7d4e8141c4175c495d6d1484405e3  node-v5.6.0.tar.xz
diff --git a/package/nodejs/nodejs.mk b/package/nodejs/nodejs.mk
@@ -5,11 +5,7 @@
 ################################################################################
 
 NODEJS_VERSION = $(call qstrip,$(BR2_PACKAGE_NODEJS_VERSION_STRING))
-ifeq ($(findstring 0.10.,$(NODEJS_VERSION)),)
 NODEJS_SOURCE = node-v$(NODEJS_VERSION).tar.xz
-else
-NODEJS_SOURCE = node-v$(NODEJS_VERSION).tar.gz
-endif
 NODEJS_SITE = http://nodejs.org/dist/v$(NODEJS_VERSION)
 NODEJS_DEPENDENCIES = host-python host-nodejs zlib \
 	$(call qstrip,$(BR2_PACKAGE_NODEJS_MODULES_ADDITIONAL_DEPS))