-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Wed, 26 Apr 2023 22:52:32 +0800 Source: nodejs Architecture: source Version: 12.22.12~dfsg-1~deb11u4 Distribution: bullseye-security Urgency: high Maintainer: Debian Javascript Maintainers <pkg-javascript-devel@alioth-lists.debian.net> Changed-By: Aron Xu <aron@debian.org> Changes: nodejs (12.22.12~dfsg-1~deb11u4) bullseye-security; urgency=high . * Non-maintainer upload by the Security Team. * CVE-2023-23920: insecure loading of ICU data through ICU_DATA environment variable. Checksums-Sha1: 1f28d6bb7107d86ce7c946145a7cb67d3b2d1764 3135 nodejs_12.22.12~dfsg-1~deb11u4.dsc f8ba3861a9126319c4badc82057502a2efe134f2 150984 nodejs_12.22.12~dfsg-1~deb11u4.debian.tar.xz 1c5f66a172f129d23aea065f040ad9c2cd1e0e95 7077 nodejs_12.22.12~dfsg-1~deb11u4_source.buildinfo Checksums-Sha256: 7c40aaae75670d0fa4e61b8e22529ec2aae9b00e8f3bdb11501404b378796ba5 3135 nodejs_12.22.12~dfsg-1~deb11u4.dsc c062281b1458ee71e79d13bfd975ac2dfba82b42014dde04cf02369b2d527485 150984 nodejs_12.22.12~dfsg-1~deb11u4.debian.tar.xz 944a4fd9f42d267dfa6d165249eda83c18c17de3a3b32471feaf8763f1fd1493 7077 nodejs_12.22.12~dfsg-1~deb11u4_source.buildinfo Files: dc5a369f4c19d7c39636bf558b970e68 3135 javascript optional nodejs_12.22.12~dfsg-1~deb11u4.dsc bedcb88adac985d3c7da1fabe1a1fcd7 150984 javascript optional nodejs_12.22.12~dfsg-1~deb11u4.debian.tar.xz ac719e882149d71faf89f34d4b8456b3 7077 javascript optional nodejs_12.22.12~dfsg-1~deb11u4_source.buildinfo -----BEGIN PGP SIGNATURE----- iQEzBAEBCAAdFiEEhhz+aYQl/Bp4OTA7O1LKKgqv2VQFAmRJPz4ACgkQO1LKKgqv 2VTsaQf/QxEgsZQfalvfOqwr6oipwb5h9gx7GWO+S9i4V6ezc7h9I6Vr8UdWgyND GEu67PdeyOZpi7gkrMmgrY3q6LYSk3ZoXn255zJpK1O1RCtdHv3bj/HOnoY4rJR0 x5ci11VuHLas5wO4zePQ3vGHBbm3gFU6FA6YpP9hsH2EsT7uUHogRo7SifLPcXhL Lugk/7dwNTjAuzD9I/uqlVKK9w36wgQIPQ2w+kOWj+gPi5M8VaV52wxMHPSQcAnz y2tMO07RrsCEISimxTxlyefBCoZwBJL5IOBVmKx/yqhVR1xZfOSSRgdBAbBapSdq es7AnU5K4d13TKC+pbFATxGppULQRg== =F8qn -----END PGP SIGNATURE-----