Skip to content

Commit

Permalink
Blog: add security pre-release announcement (#7404)
Browse files Browse the repository at this point in the history 
* Blog: add security pre-release announcement

* fixup! Blog: add security pre-release announcement
  • Loading branch information
@RafaelGSS
RafaelGSS authored Jan 14, 2025
1 parent 68f6154 commit e7532b7
Show file tree
Hide file tree
Showing 2 changed files with 43 additions and 5 deletions.
38 changes: 38 additions & 0 deletions apps/site/pages/en/blog/release/january-2025-security-releases.md
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,38 @@
---
date: 2025-01-14T03:00:00.000Z
category: vulnerability
title: Tuesday, January 21, 2025 Security Releases
slug: january-2025-security-releases
layout: blog-post
author: The Node.js Project
---

# Summary

The Node.js project will release new versions of the 23.x, 22.x, 20.x, 18.x
releases lines on or shortly after, Tuesday, January 21, 2025 in order to address:

- 1 high severity issues.
- 2 medium severity issues.

## Impact

The 23.x release line of Node.js is vulnerable to 1 high severity issues, 2 medium severity issues.
The 22.x release line of Node.js is vulnerable to 1 high severity issues, 2 medium severity issues.
The 20.x release line of Node.js is vulnerable to 1 high severity issues, 2 medium severity issues.
The 18.x release line of Node.js is vulnerable to 2 medium severity issues.

It's important to note that End-of-Life versions are always affected when a security release occurs.
To ensure your system's security, please use an up-to-date version as outlined in our
[Release Schedule](https://github.com/nodejs/release#release-schedule).

## Release timing

Releases will be available on, or shortly after, Tuesday, January 21, 2025.

## Contact and future updates

The current Node.js security policy can be found at <https://nodejs.org/en/security/>.
Please follow the process outlined in <https://github.com/nodejs/node/blob/master/SECURITY.md> if you wish to report a vulnerability in Node.js.

Subscribe to the low-volume announcement-only nodejs-sec mailing list at <https://groups.google.com/forum/#!forum/nodejs-sec> to stay up to date on security vulnerabilities and security-related releases of Node.js and the projects maintained in the nodejs GitHub organization.
10 changes: 5 additions & 5 deletions apps/site/site.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -28,11 +28,11 @@
],
"websiteBanners": {
"index": {
"startDate": "2024-12-04T00:00:00.000Z",
"endDate": "2024-12-11T00:00:00.000Z",
"text": "Save up to 60% on Node.js courses and certifications",
"link": "https://training.linuxfoundation.org/cyber-monday-openjs-2024/",
"type": "default"
"startDate": "2025-01-14T03:00:00.000Z",
"endDate": "2025-01-21T03:00:00.000Z",
"text": "New security releases to be made available Tuesday, January 21, 2025",
"link": "https://nodejs.org/en/blog/vulnerability/january-2025-security-releases",
"type": "warning"
}
},
"websiteBadges": {
Expand Down

0 comments on commit e7532b7

Please sign in to comment.