build: update all non-major dependencies
This MR contains the following updates:
Package | Type | Update | Change |
---|---|---|---|
influxdb | minor |
2.4.0-alpine -> 2.5.1-alpine
|
|
node | image | minor |
18.11.0-alpine -> 18.12.1-alpine
|
python | image | patch |
3.11.0 -> 3.11.1
|
Release Notes
nodejs/node
v18.12.1
: 2022-11-04, Version 18.12.1 'Hydrogen' (LTS), @juanarbol
This is a security release.
Notable changes
The following CVEs are fixed in this release:
- CVE-2022-3602: X.509 Email Address 4-byte Buffer Overflow (High)
- CVE-2022-3786: X.509 Email Address Variable Length Buffer Overflow (High)
- CVE-2022-43548: DNS rebinding in --inspect via invalid octal IP address (Medium)
More detailed information on each of the vulnerabilities can be found in November 2022 Security Releases blog post.
Commits
- [
39f8a672e3
] - deps: update archs files for quictls/openssl-3.0.7+quic nodejs/node#45286 - [
80218127c8
] - deps: upgrade openssl sources to quictls/openssl-3.0.7+quic nodejs/node#45286 - [
165342beac
] - inspector: harden IP address validation again (Tobias Nießen) nodejs-private/node-private#354
v18.12.0
: 2022-10-25, Version 18.12.0 'Hydrogen' (LTS), @ruyadorno and @RafaelGSS
Notable Changes
This release marks the transition of Node.js 18.x into Long Term Support (LTS) with the codename 'Hydrogen'. The 18.x release line now moves into "Active LTS" and will remain so until October 2023. After that time, it will move into "Maintenance" until end of life in April 2025.
Configuration
-
If you want to rebase/retry this MR, check this box
This MR has been generated by Renovate Bot.