nodejs/node (node)
### [`v6.17.1`](https://togithub.com/nodejs/node/releases/tag/v6.17.1): 2019-04-03, Version 6.17.1 'Boron' (LTS), @BethGriggs
[Compare Source](https://togithub.com/nodejs/node/compare/v6.17.0...v6.17.1)
Node 6 is due to go End-of-Life on 2019-04-30.
##### Notable Changes
- **http**:
- fix error check in `Execute()` (Brian White) [#25939](https://togithub.com/nodejs/node/pull/25939)
##### Commits
- \[[`c9d21a0c10`](https://togithub.com/nodejs/node/commit/c9d21a0c10)] - **build**: set `-blibpath:` for AIX (Richard Lau) [#25447](https://togithub.com/nodejs/node/pull/25447)
- \[[`9ba5fd6bad`](https://togithub.com/nodejs/node/commit/9ba5fd6bad)] - **build**: only check REPLACEME & DEP...X for releases (Rod Vagg) [#24575](https://togithub.com/nodejs/node/pull/24575)
- \[[`1371a6f88b`](https://togithub.com/nodejs/node/commit/1371a6f88b)] - **doc**: simplify CODE_OF_CONDUCT.md (Rich Trott) [#23989](https://togithub.com/nodejs/node/pull/23989)
- \[[`ad62971573`](https://togithub.com/nodejs/node/commit/ad62971573)] - **doc**: document that addMembership must be called once in a cluster (James M Snell) [#23746](https://togithub.com/nodejs/node/pull/23746)
- \[[`8080a9bf40`](https://togithub.com/nodejs/node/commit/8080a9bf40)] - **http**: fix error check in `Execute()` (Brian White) [#25939](https://togithub.com/nodejs/node/pull/25939)
- \[[`aedc7120ea`](https://togithub.com/nodejs/node/commit/aedc7120ea)] - **src**: fix bootstrap_node on bsd (sylkat) [#22663](https://togithub.com/nodejs/node/pull/22663)
- \[[`b5d464955a`](https://togithub.com/nodejs/node/commit/b5d464955a)] - **test**: fix test-repl-envvars (Anna Henningsen) [#25226](https://togithub.com/nodejs/node/pull/25226)
### [`v6.17.0`](https://togithub.com/nodejs/node/compare/v6.16.0...v6.17.0)
[Compare Source](https://togithub.com/nodejs/node/compare/v6.16.0...v6.17.0)
### [`v6.16.0`](https://togithub.com/nodejs/node/releases/tag/v6.16.0): 2018-12-26, Version 6.16.0 'Boron' (LTS), @MylesBorins
[Compare Source](https://togithub.com/nodejs/node/compare/v6.15.1...v6.16.0)
The 6.15.0 security release introduced some unexpected breakages on the 6.x release line.
This is a special release to fix a regression in the HTTP binary upgrade response body and add
a missing CLI flag to adjust the max header size of the http parser.
##### Notable Changes
- **cli**:
- add --max-http-header-size flag (cjihrig) [#24811](https://togithub.com/nodejs/node/pull/24811)
- **http**:
- add maxHeaderSize property (cjihrig) [#24860](https://togithub.com/nodejs/node/pull/24860)
##### Commits
- \[[`f233b160c9`](https://togithub.com/nodejs/node/commit/f233b160c9)] - **(SEMVER-MINOR)** **cli**: add --max-http-header-size flag (cjihrig) [#24811](https://togithub.com/nodejs/node/pull/24811)
- \[[`59f83d6896`](https://togithub.com/nodejs/node/commit/59f83d6896)] - **(SEMVER-MINOR)** **deps**: cherry-pick http_parser_set_max_header_size (cjihrig) [#24811](https://togithub.com/nodejs/node/pull/24811)
- \[[`c0c4de71f0`](https://togithub.com/nodejs/node/commit/c0c4de71f0)] - **(SEMVER-MINOR)** **http**: add maxHeaderSize property (cjihrig) [#24860](https://togithub.com/nodejs/node/pull/24860)
- \[[`8a3e0c0697`](https://togithub.com/nodejs/node/commit/8a3e0c0697)] - **http**: fix regression of binary upgrade response body (Matteo Collina) [#25036](https://togithub.com/nodejs/node/pull/25036)
### [`v6.15.1`](https://togithub.com/nodejs/node/releases/tag/v6.15.1): 2018-12-03, Version 6.15.1 'Boron' (LTS), @rvagg
[Compare Source](https://togithub.com/nodejs/node/compare/v6.15.0...v6.15.1)
##### Notable Changes
This is a patch release to address a bad backport of the fix for "Slowloris HTTP Denial of Service" (CVE-2018-12122). Node.js 6.15.0 misapplies the headers timeout to an entire keep-alive HTTP session, resulting in prematurely disconnected sockets.
##### Commits
- \[[`5d9005c359`](https://togithub.com/nodejs/node/commit/5d9005c359)] - **http**: fix backport of Slowloris headers (Matteo Collina) [#24796](https://togithub.com/nodejs/node/pull/24796)
Configuration
📅 Schedule: Branch creation - "after 10:00 and before 16:00 every weekday" (UTC), Automerge - At any time (no schedule defined).
🚦 Automerge: Enabled.
♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.
🔕 Ignore: Close this PR and you won't be reminded about this update again.
[ ] If you want to rebase/retry this PR, check this box
This PR has been generated by Mend Renovate. View repository job log here.
This PR contains the following updates:
6.14.6->6.17.1Release Notes
nodejs/node (node)
### [`v6.17.1`](https://togithub.com/nodejs/node/releases/tag/v6.17.1): 2019-04-03, Version 6.17.1 'Boron' (LTS), @BethGriggs [Compare Source](https://togithub.com/nodejs/node/compare/v6.17.0...v6.17.1) Node 6 is due to go End-of-Life on 2019-04-30. ##### Notable Changes - **http**: - fix error check in `Execute()` (Brian White) [#25939](https://togithub.com/nodejs/node/pull/25939) ##### Commits - \[[`c9d21a0c10`](https://togithub.com/nodejs/node/commit/c9d21a0c10)] - **build**: set `-blibpath:` for AIX (Richard Lau) [#25447](https://togithub.com/nodejs/node/pull/25447) - \[[`9ba5fd6bad`](https://togithub.com/nodejs/node/commit/9ba5fd6bad)] - **build**: only check REPLACEME & DEP...X for releases (Rod Vagg) [#24575](https://togithub.com/nodejs/node/pull/24575) - \[[`1371a6f88b`](https://togithub.com/nodejs/node/commit/1371a6f88b)] - **doc**: simplify CODE_OF_CONDUCT.md (Rich Trott) [#23989](https://togithub.com/nodejs/node/pull/23989) - \[[`ad62971573`](https://togithub.com/nodejs/node/commit/ad62971573)] - **doc**: document that addMembership must be called once in a cluster (James M Snell) [#23746](https://togithub.com/nodejs/node/pull/23746) - \[[`8080a9bf40`](https://togithub.com/nodejs/node/commit/8080a9bf40)] - **http**: fix error check in `Execute()` (Brian White) [#25939](https://togithub.com/nodejs/node/pull/25939) - \[[`aedc7120ea`](https://togithub.com/nodejs/node/commit/aedc7120ea)] - **src**: fix bootstrap_node on bsd (sylkat) [#22663](https://togithub.com/nodejs/node/pull/22663) - \[[`b5d464955a`](https://togithub.com/nodejs/node/commit/b5d464955a)] - **test**: fix test-repl-envvars (Anna Henningsen) [#25226](https://togithub.com/nodejs/node/pull/25226) ### [`v6.17.0`](https://togithub.com/nodejs/node/compare/v6.16.0...v6.17.0) [Compare Source](https://togithub.com/nodejs/node/compare/v6.16.0...v6.17.0) ### [`v6.16.0`](https://togithub.com/nodejs/node/releases/tag/v6.16.0): 2018-12-26, Version 6.16.0 'Boron' (LTS), @MylesBorins [Compare Source](https://togithub.com/nodejs/node/compare/v6.15.1...v6.16.0) The 6.15.0 security release introduced some unexpected breakages on the 6.x release line. This is a special release to fix a regression in the HTTP binary upgrade response body and add a missing CLI flag to adjust the max header size of the http parser. ##### Notable Changes - **cli**: - add --max-http-header-size flag (cjihrig) [#24811](https://togithub.com/nodejs/node/pull/24811) - **http**: - add maxHeaderSize property (cjihrig) [#24860](https://togithub.com/nodejs/node/pull/24860) ##### Commits - \[[`f233b160c9`](https://togithub.com/nodejs/node/commit/f233b160c9)] - **(SEMVER-MINOR)** **cli**: add --max-http-header-size flag (cjihrig) [#24811](https://togithub.com/nodejs/node/pull/24811) - \[[`59f83d6896`](https://togithub.com/nodejs/node/commit/59f83d6896)] - **(SEMVER-MINOR)** **deps**: cherry-pick http_parser_set_max_header_size (cjihrig) [#24811](https://togithub.com/nodejs/node/pull/24811) - \[[`c0c4de71f0`](https://togithub.com/nodejs/node/commit/c0c4de71f0)] - **(SEMVER-MINOR)** **http**: add maxHeaderSize property (cjihrig) [#24860](https://togithub.com/nodejs/node/pull/24860) - \[[`8a3e0c0697`](https://togithub.com/nodejs/node/commit/8a3e0c0697)] - **http**: fix regression of binary upgrade response body (Matteo Collina) [#25036](https://togithub.com/nodejs/node/pull/25036) ### [`v6.15.1`](https://togithub.com/nodejs/node/releases/tag/v6.15.1): 2018-12-03, Version 6.15.1 'Boron' (LTS), @rvagg [Compare Source](https://togithub.com/nodejs/node/compare/v6.15.0...v6.15.1) ##### Notable Changes This is a patch release to address a bad backport of the fix for "Slowloris HTTP Denial of Service" (CVE-2018-12122). Node.js 6.15.0 misapplies the headers timeout to an entire keep-alive HTTP session, resulting in prematurely disconnected sockets. ##### Commits - \[[`5d9005c359`](https://togithub.com/nodejs/node/commit/5d9005c359)] - **http**: fix backport of Slowloris headers (Matteo Collina) [#24796](https://togithub.com/nodejs/node/pull/24796)Configuration
📅 Schedule: Branch creation - "after 10:00 and before 16:00 every weekday" (UTC), Automerge - At any time (no schedule defined).
🚦 Automerge: Enabled.
♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.
🔕 Ignore: Close this PR and you won't be reminded about this update again.
This PR has been generated by Mend Renovate. View repository job log here.