Node v16.6.0(현재 버전)

주요 변경사항

다른 주요 변경사항

  • CVE-2021-22930: 스트림 취소시 http2를 종료할 때 메모리 해제 후 참조 문제 (높음)
  • [f93d2ac587] - inspector: 안정 상태로 바뀌었습니다. (Gireesh Punathil) #37748
  • [89b4770d5c] - punycode: 곧 폐지 예정일 기능이 되었습니다. (Antoine du Hamel) #38444
  • [b67214fe31] - (SEMVER-MINOR) repl: --experimental-repl-await 플래그가 기본값이 되었습니다. (hemanth.hm) #34733

Commits

Windows 32-bit Installer: https://nodejs.org/dist/v16.6.0/node-v16.6.0-x86.msi

Windows 64-bit Installer: https://nodejs.org/dist/v16.6.0/node-v16.6.0-x64.msi

Windows 32-bit Binary: https://nodejs.org/dist/v16.6.0/win-x86/node.exe

Windows 64-bit Binary: https://nodejs.org/dist/v16.6.0/win-x64/node.exe

macOS 64-bit Installer: https://nodejs.org/dist/v16.6.0/node-v16.6.0.pkg

macOS Apple Silicon 64-bit Binary: https://nodejs.org/dist/v16.6.0/node-v16.6.0-darwin-arm64.tar.gz

macOS Intel 64-bit Binary: https://nodejs.org/dist/v16.6.0/node-v16.6.0-darwin-x64.tar.gz

Linux 64-bit Binary: https://nodejs.org/dist/v16.6.0/node-v16.6.0-linux-x64.tar.xz

Linux PPC LE 64-bit Binary: https://nodejs.org/dist/v16.6.0/node-v16.6.0-linux-ppc64le.tar.xz

Linux s390x 64-bit Binary: https://nodejs.org/dist/v16.6.0/node-v16.6.0-linux-s390x.tar.xz

AIX 64-bit Binary: https://nodejs.org/dist/v16.6.0/node-v16.6.0-aix-ppc64.tar.gz

ARMv7 32-bit Binary: https://nodejs.org/dist/v16.6.0/node-v16.6.0-linux-armv7l.tar.xz

ARMv8 64-bit Binary: https://nodejs.org/dist/v16.6.0/node-v16.6.0-linux-arm64.tar.xz

Source Code: https://nodejs.org/dist/v16.6.0/node-v16.6.0.tar.gz

Other release files: https://nodejs.org/dist/v16.6.0/

Documentation: https://nodejs.org/docs/v16.6.0/api/

SHASUMS

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

ed07957f3c6075294cb1c5ed5760b8471c6fab880fd85bb29dabd44d64d12869 node-v16.6.0-aix-ppc64.tar.gz
07720d1bc18dca0bb3abdcd3c2e4f39a7cb532ca7f56c48bd42a4233de7fcd89 node-v16.6.0-darwin-arm64.tar.gz
95218b0cc0a90264be5a7dc30014ac46748f2f9468d39ba79ba3359524004ebf node-v16.6.0-darwin-arm64.tar.xz
4dc28f83bc1165ae28c937458b7277b4af3ff8c6e61cccf2d9b87b4bfbcbffec node-v16.6.0-darwin-x64.tar.gz
49800406470cc756ee511dc0ea3306c32faeaf280bc87668b62494475adc3569 node-v16.6.0-darwin-x64.tar.xz
f61ce6ba822f6710a45aff9dc5e64879670b93c454ce66881df579895964bb12 node-v16.6.0-headers.tar.gz
484ce3c7d0fa58f7495c7ecb263a5c7940f3d1b1f2a34769421f5ad1d6627eb6 node-v16.6.0-headers.tar.xz
046a352a4ff2f986a026622dc61c0f9c38cb07099e63b643ca5a5ee12c8ac5bd node-v16.6.0-linux-arm64.tar.gz
8dd59632de8eadb49723b86e04d7940f7c80d96167a9fd1c4e39d7df2d145b52 node-v16.6.0-linux-arm64.tar.xz
1a991b4f706064c6eba27652021dbccd510b056a121316b182e43d54b2a4a0cc node-v16.6.0-linux-armv7l.tar.gz
fb51660c4b22600f417314879ac8cc3ce8a2114b74b92493229e5941885c1552 node-v16.6.0-linux-armv7l.tar.xz
6f1dbb2cf8f8936a5c2c2a4a8980067e658084992ec6811606d2479466acd497 node-v16.6.0-linux-ppc64le.tar.gz
bf0c1e42bc6d149c7800b2ae01d174a59ee9ead2157481c3a8ae0b1a7ec41c69 node-v16.6.0-linux-ppc64le.tar.xz
c9b836129c4bc75e1932202628ab17857aa11d8dbde835db772a05240f041638 node-v16.6.0-linux-s390x.tar.gz
397ebd068a8fc9e2b05e54001609f5d386102c4f3d539e750614414623024b72 node-v16.6.0-linux-s390x.tar.xz
4658500d47ab2373b9c5ffb8256bd4e514b6326a6c8a9c6186105fba4de75548 node-v16.6.0-linux-x64.tar.gz
0f3cc33cfaa85e156bd694c7375196002b45d7fa7e50615b02bff8cf16d4767b node-v16.6.0-linux-x64.tar.xz
60450ae814a0c29e703e8ae417604edad688c46b007a761d3def2d0600387405 node-v16.6.0.pkg
cb24f609abba81a27536955135f0b3ca0b72e70b7aa561fec39490b386bba7ab node-v16.6.0.tar.gz
5c5714a08b0881f37b57ab1f1b4801a1af316a2aea17faedc9c2d43247c7b9d9 node-v16.6.0.tar.xz
58d9ec0876256d68040d35a606f18dcbf1331da63adfb96af17e43179f6e9f1b node-v16.6.0-win-x64.7z
479bd81469ade081381d441de9e3dc9a1d276ec8408f3297f282452dac7b0b3c node-v16.6.0-win-x64.zip
ce52307b52e994d763f5da048bf3db3811bf9771d19d63bf96c8937499c7d29b node-v16.6.0-win-x86.7z
9f21096d494328cf724de4a9ef00e8d1412e6882243e952917eeb67dae232086 node-v16.6.0-win-x86.zip
dcbfe8fd618383117abf158ae8af2c7584ddff77a0102f349d45f612e8b1e633 node-v16.6.0-x64.msi
f26e9e749eb339cabc53150091542f5acd75bed4fbbdfb86dfa226290c6e2293 node-v16.6.0-x86.msi
552e7a2d278a5c4b66aeafed2cfadacae06df040b55140ef764eb555bc82c507 win-x64/node.exe
2756cffae3acb00752ee92d5cabd252881ce5104620fde5f594de0ae9f5d324e win-x64/node.lib
7e58d85a01e9ce1f58a4e2dec2c039aaa56f983c8461ed1d6921135ba7cda8d8 win-x64/node_pdb.7z
a226d6ce4492158396d7e86192bb5cd81cc6ecaac5ac7e0f05e654124dfc543a win-x64/node_pdb.zip
81b0a47aede508406f69f47566928a411710402362c96e78783723c8d2f89c84 win-x86/node.exe
53e28b2d2a0c06c438081c39d45c34782d8052a87dd0c59b3388ba9212f5eb6f win-x86/node.lib
ffa06f2808a23f9ef1790e6c80dc3179a881adca8c1abf2eab94eb10aa6b9509 win-x86/node_pdb.7z
4616b9abc301daf257668f2c24097d167a93335ac6ae711bec1e212f76348beb win-x86/node_pdb.zip
-----BEGIN PGP SIGNATURE-----

iQEzBAEBCAAdFiEETtd49TnjY0x3nIfG1wYoSKGrAFwFAmEDMmcACgkQ1wYoSKGr
AFxAUAgAkaLoBZJQ2LZ/W/aPNyJm3Pmes0ZFrVJzBIFUPEfWIiOi3LfjsNb2RYqo
2drbtIja3jLiypdkmOzaGYAkCmyUqV4D+5MeP2asF/I25paIvn+FrsMUcsm0DK5F
pYeYfQvLzv3KVc912aIJEHeMTLoEx2Z6mXCgja4lolOCxazdrBhegW6+MnjjoAOG
y5PBqF0c37FDe8RNF43g9wGNNtuDpvOizffd1j5cUC/2P0UnGAoQNv/Ni4wPTxL3
YYq3fvUuq/Es3ELrLNkIOZwNnPyxMz8HR+NdQpVifMGdxEWefNl4l7zK7njO+M9D
SjSoQOk23Zbzl/GqYjGq4B5vJfVmdA==
=znoD
-----END PGP SIGNATURE-----

Node v16.5.0(현재 버전)

주요 변경사항

다른 주요 변경사항

  • [83f3b959f9] - (SEMVER-MINOR) fs: 임시 디렉토리 접두어에 빈 문자열을 사용할 수 있습니다. (Voltrex) #39028
  • [c04fd2bb97] - deps: npm의 버전을 7.19.1으로 업그레이드했습니다. (npm team) #39225

Commits

Windows 32-bit Installer: https://nodejs.org/dist/v16.5.0/node-v16.5.0-x86.msi

Windows 64-bit Installer: https://nodejs.org/dist/v16.5.0/node-v16.5.0-x64.msi

Windows 32-bit Binary: https://nodejs.org/dist/v16.5.0/win-x86/node.exe

Windows 64-bit Binary: https://nodejs.org/dist/v16.5.0/win-x64/node.exe

macOS 64-bit Installer: https://nodejs.org/dist/v16.5.0/node-v16.5.0.pkg

macOS Apple Silicon 64-bit Binary: https://nodejs.org/dist/v16.5.0/node-v16.5.0-darwin-arm64.tar.gz

macOS Intel 64-bit Binary: https://nodejs.org/dist/v16.5.0/node-v16.5.0-darwin-x64.tar.gz

Linux 64-bit Binary: https://nodejs.org/dist/v16.5.0/node-v16.5.0-linux-x64.tar.xz

Linux PPC LE 64-bit Binary: https://nodejs.org/dist/v16.5.0/node-v16.5.0-linux-ppc64le.tar.xz

Linux s390x 64-bit Binary: https://nodejs.org/dist/v16.5.0/node-v16.5.0-linux-s390x.tar.xz

AIX 64-bit Binary: https://nodejs.org/dist/v16.5.0/node-v16.5.0-aix-ppc64.tar.gz

ARMv7 32-bit Binary: https://nodejs.org/dist/v16.5.0/node-v16.5.0-linux-armv7l.tar.xz

ARMv8 64-bit Binary: https://nodejs.org/dist/v16.5.0/node-v16.5.0-linux-arm64.tar.xz

Source Code: https://nodejs.org/dist/v16.5.0/node-v16.5.0.tar.gz

Other release files: https://nodejs.org/dist/v16.5.0/

Documentation: https://nodejs.org/docs/v16.5.0/api/

SHASUMS

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

3d134a7499d7b022febaa50d1923fb799c8edd9c2478be180eb88bfee06165b1 node-v16.5.0-aix-ppc64.tar.gz
4296521e8b5d73d4c3b9b7f6f9f666e577342ea92a520f33040f1a252387d079 node-v16.5.0-darwin-arm64.tar.gz
cc28582b5e4d91d92d61a29c8c63473dc151e816801a4718ef7518162bd4fd60 node-v16.5.0-darwin-arm64.tar.xz
b779bd40b7c9366adcbe4f9fd2afd9ee5f085e333200380b34d285eb32c121bc node-v16.5.0-darwin-x64.tar.gz
681fa06160fd9f7534508e7bdd114fb70bc7f25747560335f552ffb6bb5de9ed node-v16.5.0-darwin-x64.tar.xz
3dd36740be57f63135653c241ed671aa1b1a10cde949e79d3dc99f7ec19ee77c node-v16.5.0-headers.tar.gz
6c3434c609b37205405198c4faf6ea7904fbca97d63be9e6a3b04fe33c804aa5 node-v16.5.0-headers.tar.xz
9447361c2b19d0f59b2f3acdcd9326bd1542c13828f9c8807ed46d3b6024fe09 node-v16.5.0-linux-arm64.tar.gz
acbadd349afe21cbd41280ae3512fe8121fc93a0778a63354e6cca87190ff0f1 node-v16.5.0-linux-arm64.tar.xz
17e887d9182cd6d7f92be4ecebd05ebf4dc887ec5eb05244403625a4c84ed337 node-v16.5.0-linux-armv7l.tar.gz
df3b2269150ba7494a7f59ebf551277ba32530529c9d168caa16bd8cee8c4cf4 node-v16.5.0-linux-armv7l.tar.xz
935cbd6195c0b08edd801eb3c0373bb97454a1105d032365d0df1bbc782e836a node-v16.5.0-linux-ppc64le.tar.gz
6b3f26648c7f28dd7cf3de919d05f0cfcdae3ee35154b1789cbd3bd2eb280258 node-v16.5.0-linux-ppc64le.tar.xz
fbe5c2d3f5e6d490357f4a451ba0355113d6e8175d8939542f11a81c6c65a8f7 node-v16.5.0-linux-s390x.tar.gz
b5c294a39c1400ef32dee365323ecdaf78a205f8625a3f67d8ed4f7f3f6e81ea node-v16.5.0-linux-s390x.tar.xz
837d76357d8622aac81a5b7f27ba0fd9556faa311a44254f1ffd26aaf42b052f node-v16.5.0-linux-x64.tar.gz
e41fb3f6ba1ba248d6facd0ccb35ea3b043845b5d358839a344ef3fb39d744c3 node-v16.5.0-linux-x64.tar.xz
c0510db7132fcc97f483f77b68d62a57944500e5ae4d8a33844c292afdf9424e node-v16.5.0.pkg
a0d233cde072822af7fd3043b866e526a1739df32c3ace6210ae289f3266ccb7 node-v16.5.0.tar.gz
3f37e38dd1129b6905f8d184616d41b3ab8433fa54cadce8a8c18b7a8bbcaa99 node-v16.5.0.tar.xz
eb2136d451cbc4c7027437c48450b3da99f04e9863011504c0308b99df2b82ea node-v16.5.0-win-x64.7z
9223eb2cbd913fd313ab4456d5fdc6b73e44f916e76189bdaecaa08dc9f5de7d node-v16.5.0-win-x64.zip
c2ced414a78a6d6965292408fe28efa033f7b30775f9d0401feb841abee86a00 node-v16.5.0-win-x86.7z
456675c3c7bba7d219a493f9b2109bb2dd05d95c9d660a0384b3a91e0a9b8610 node-v16.5.0-win-x86.zip
f80b770b00896672d7d26c70b2d7ecafecef492d260b0552c81138a675758f59 node-v16.5.0-x64.msi
691e8225e6eb4ce5850078dc0d8d4c18836ab92e6032a77fb98566df5b568518 node-v16.5.0-x86.msi
d1751bd9eeb147a48971e40ae9e4374ace30678bbca3754ba35231e0add1a8f4 win-x64/node.exe
4218ef0c41c2d9c8e236a276e8abd8cc36dacdeba54b147cfcbab54848cfb28e win-x64/node.lib
c184211d64d7616806949db63cb70dd07fe6afb87a0aaf17f1d54f07593d5d12 win-x64/node_pdb.7z
8fe6df2fad2e969c2ee8cb42c400875f9b902c7ca1aee38f4a61c02079afbfc4 win-x64/node_pdb.zip
ff1bf2e0330a5599117bcfd371f929574aa2b7213d9bec21345b4e80185160a8 win-x86/node.exe
e899517caf4e57f674ff37ca8c9db892d676d86960698b2663bbe16e82fa2542 win-x86/node.lib
78d1bd79b287590c4b577e6c66d982b7519f66a73190c4ddd38a00b9e04ef3ec win-x86/node_pdb.7z
57f82d54e082619c38eacc7b7d88043a6102143b3198c988508ad7e1402e5bfd win-x86/node_pdb.zip
-----BEGIN PGP SIGNATURE-----
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=uuQR
-----END PGP SIGNATURE-----

Node v12.22.3(LTS)

주요 변경사항

Node.js 12.22.2에서 발생한, 영어가 아닌 로케일에서 Windows 설치 프로그램에 생긴 회귀 문제를 이번 릴리스에서 수정했습니다.
Windows 설치 프로그램을 사용하지 않으면 이번 릴리스를 다운로드받을 필요가 없습니다.

Commits

  • [182f86a4d4] - win,msi: use localized “Authenticated Users” name (Richard Lau) #39241

Windows 32-bit Installer: https://nodejs.org/dist/v12.22.3/node-v12.22.3-x86.msi

Windows 64-bit Installer: https://nodejs.org/dist/v12.22.3/node-v12.22.3-x64.msi

Windows 32-bit Binary: https://nodejs.org/dist/v12.22.3/win-x86/node.exe

Windows 64-bit Binary: https://nodejs.org/dist/v12.22.3/win-x64/node.exe

macOS 64-bit Installer: https://nodejs.org/dist/v12.22.3/node-v12.22.3.pkg

macOS Intel 64-bit Binary: https://nodejs.org/dist/v12.22.3/node-v12.22.3-darwin-x64.tar.gz

Linux 64-bit Binary: https://nodejs.org/dist/v12.22.3/node-v12.22.3-linux-x64.tar.xz

Linux PPC LE 64-bit Binary: https://nodejs.org/dist/v12.22.3/node-v12.22.3-linux-ppc64le.tar.xz

Linux s390x 64-bit Binary: https://nodejs.org/dist/v12.22.3/node-v12.22.3-linux-s390x.tar.xz

AIX 64-bit Binary: https://nodejs.org/dist/v12.22.3/node-v12.22.3-aix-ppc64.tar.gz

SmartOS 64-bit Binary: https://nodejs.org/dist/v12.22.3/node-v12.22.3-sunos-x64.tar.xz

ARMv7 32-bit Binary: https://nodejs.org/dist/v12.22.3/node-v12.22.3-linux-armv7l.tar.xz

ARMv8 64-bit Binary: https://nodejs.org/dist/v12.22.3/node-v12.22.3-linux-arm64.tar.xz

Source Code: https://nodejs.org/dist/v12.22.3/node-v12.22.3.tar.gz

Other release files: https://nodejs.org/dist/v12.22.3/

Documentation: https://nodejs.org/docs/v12.22.3/api/

SHASUMS

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

84755fb1e0d8c87b7da168f5d29b53427275c3899f9542d64a56b188d19305fc node-v12.22.3-aix-ppc64.tar.gz
c223e375567804efa312c3c04d78b1c27901dd671210d5bc588ae1e3439dd3e5 node-v12.22.3-darwin-x64.tar.gz
58507dacbec21ef55940c9f4bcab5d0f036c2e7dd25dc6d5fde60441640bc2fc node-v12.22.3-darwin-x64.tar.xz
8fa6565cc096f19c26d423b7b89c0bc709d8f5f551714b682bd651cbdb15802d node-v12.22.3-headers.tar.gz
d6b13d5eed9c602b13b12b0600017afd08eeaeae2856e76cd4d29016ebea6939 node-v12.22.3-headers.tar.xz
fea8d7801dbea6aa45d8fe58351f758a9262e187b8e86eaf500bbe01c7f02362 node-v12.22.3-linux-arm64.tar.gz
fbdcd0bfd58c66c6e2eeeae1a6c3935a9b5d6162292a6d2ac3f4ac0364da4baa node-v12.22.3-linux-arm64.tar.xz
4a93906080d58c0591646815c4fed1f1e30864cedf62f19e3fb9bae97e48fc89 node-v12.22.3-linux-armv7l.tar.gz
595302c9be0d0c5773a0bbdaf1f21de6583202f992c0579e090c1f6c1965694b node-v12.22.3-linux-armv7l.tar.xz
d0e0c1cbb175a8555d5ac29ec4e419f8b5b42d43fe9c89e3ffa6ad10c0e4fb1d node-v12.22.3-linux-ppc64le.tar.gz
1af91d2aa28ae803944c533f22ca00391f5527d98a4c4741f1ac6f3d45ba2d02 node-v12.22.3-linux-ppc64le.tar.xz
4e55e25f33625d06e5fef0a2f7886d50c5a2fa27faffff39a3ceecfb3f671e7d node-v12.22.3-linux-s390x.tar.gz
c9a4410d12fb28009d3c86edfac27a2b39ba191f6018dc1ff884c09bc7ed0cd3 node-v12.22.3-linux-s390x.tar.xz
948249f40252c65080ee311404353960226fdd8847f575d3118df6656e0d8fea node-v12.22.3-linux-x64.tar.gz
1d626cbe78bf7689fbe78d2525742a0dd602e37f3df1939b8b6f9aa885d20e6d node-v12.22.3-linux-x64.tar.xz
e59035bd0e8329986dc9de8ba4630db6642dd76bd27ce2435bbfcee8bf8ad44f node-v12.22.3.pkg
cf844ab1a31f62f03a6e658b3e80b4d2babe97d08147c7d4e02d5c28d4a39a65 node-v12.22.3-sunos-x64.tar.gz
eba20ee2b7e82e68262a38d173fb6762e7aacf8069c230008ab1929341d4cd05 node-v12.22.3-sunos-x64.tar.xz
30acec454f26a168afe6d1c55307c5186ef23dba66527cc34e4497d01f91bda4 node-v12.22.3.tar.gz
350211fae3a688f41889680c8efcf689353a2e36b62b9dc2b408340986857190 node-v12.22.3.tar.xz
adefdcbe920ecb4a9a1d1bc75536b68aa71b2428d9d158e466ee49d2f6efeca9 node-v12.22.3-win-x64.7z
d84aea39d419607d5756ecbf850c6c8849f13369d8fea9486b9625ac6082aa5a node-v12.22.3-win-x64.zip
cf0f17e803628a55188a5d1f1e4a3a7230ff8457a962a34c6ebd27e5b65f45fe node-v12.22.3-win-x86.7z
f5b9c485bf25f7408b8c597f20efda0d15f3e93566b4a4034e5deba5d1dd1c37 node-v12.22.3-win-x86.zip
fb9a1524542af3a0afc959148823096dc9f9fb1a987999e6701a01ae83ac3e9e node-v12.22.3-x64.msi
66cd8c2fbccf74040b5457d872162994c72776f1cdf4b5df0168327167a1a1c5 node-v12.22.3-x86.msi
2c1da4d48af10a55a01d627c54be93fec7614a5ebff7366d2c6a8772082d0e0d win-x64/node.exe
28e5c24831deedbf4fb8a9560f2c4f95205479c589f54a9a53ec346f6a5cf8bf win-x64/node.lib
24bfb1c46515b8a2e7f59513deb9b380427933e694fb26c74952c5405a8d3024 win-x64/node_pdb.7z
0eb238f7fdb1b2f4d557c022a9e37f5ffc56f1d4c7c9e8a908c052b5fb25f3c9 win-x64/node_pdb.zip
0779521c949f71322043c00476941e29905ad95763261e078590a78cdd5915eb win-x86/node.exe
8bbcf3b9305b83f54bd80f8ec19d4e237841bde5bfaeb2aec708c36daa6435f6 win-x86/node.lib
5f64c2f4de9a473de8c05f2870692b257f2611e3acaac57b379351eacc8cc577 win-x86/node_pdb.7z
754df77f9cee18471d2c7463dcd1d4f432d3db5273525d600ed2a9cdeb64c894 win-x86/node_pdb.zip
-----BEGIN PGP SIGNATURE-----
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=SKLd
-----END PGP SIGNATURE-----

Node v14.17.3(LTS)

주요 변경사항

Node.js 14.17.2에서 발생한, 영어가 아닌 로케일에서 Windows 설치 프로그램에 생긴 회귀 문제를 이번 릴리스에서 수정했습니다.
Windows 설치 프로그램을 사용하지 않으면 이번 릴리스를 다운로드받을 필요가 없습니다.

Commits

  • [0f00104a2c] - win,msi: use localized “Authenticated Users” name (Richard Lau) #39241

Windows 32-bit Installer: https://nodejs.org/dist/v14.17.3/node-v14.17.3-x86.msi

Windows 64-bit Installer: https://nodejs.org/dist/v14.17.3/node-v14.17.3-x64.msi

Windows 32-bit Binary: https://nodejs.org/dist/v14.17.3/win-x86/node.exe

Windows 64-bit Binary: https://nodejs.org/dist/v14.17.3/win-x64/node.exe

macOS 64-bit Installer: https://nodejs.org/dist/v14.17.3/node-v14.17.3.pkg

macOS Intel 64-bit Binary: https://nodejs.org/dist/v14.17.3/node-v14.17.3-darwin-x64.tar.gz

Linux 64-bit Binary: https://nodejs.org/dist/v14.17.3/node-v14.17.3-linux-x64.tar.xz

Linux PPC LE 64-bit Binary: https://nodejs.org/dist/v14.17.3/node-v14.17.3-linux-ppc64le.tar.xz

Linux s390x 64-bit Binary: https://nodejs.org/dist/v14.17.3/node-v14.17.3-linux-s390x.tar.xz

AIX 64-bit Binary: https://nodejs.org/dist/v14.17.3/node-v14.17.3-aix-ppc64.tar.gz

ARMv7 32-bit Binary: https://nodejs.org/dist/v14.17.3/node-v14.17.3-linux-armv7l.tar.xz

ARMv8 64-bit Binary: https://nodejs.org/dist/v14.17.3/node-v14.17.3-linux-arm64.tar.xz

Source Code: https://nodejs.org/dist/v14.17.3/node-v14.17.3.tar.gz

Other release files: https://nodejs.org/dist/v14.17.3/

Documentation: https://nodejs.org/docs/v14.17.3/api/

SHASUMS

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

20e2ce162be33e76a256f48f2c33a2a6458e26c9052d58ff63e8458e05f7f08f node-v14.17.3-aix-ppc64.tar.gz
522f85db1d1fe798cba5f601d1bba7b5203ca8797b2bc934ff6f24263f0b7fb2 node-v14.17.3-darwin-x64.tar.gz
ce8b4b9db5b65da4b007644036b743c397c7aa1a280e293bdfe35d7ded463c9d node-v14.17.3-darwin-x64.tar.xz
ca6657d6c9d8c29fefa0a4a9a59fad81908ea974e4404c55f57a2e2d6f53aa5e node-v14.17.3-headers.tar.gz
f658706d2eee70340d266c00376f62dbfd0e34023050f5406fec4fc28f202d60 node-v14.17.3-headers.tar.xz
784ede0c9faa4a71d77659918052cca39981138edde2c799ffdf2b4695c08544 node-v14.17.3-linux-arm64.tar.gz
80f4143d3c2d4cf3c4420eea3202c7bf16788b0a72fd512e60bfc8066a08a51c node-v14.17.3-linux-arm64.tar.xz
922d61a0e28688fdb10082821560730fa7f3188eea93c8e8d88a8f90d7eadf03 node-v14.17.3-linux-armv7l.tar.gz
57d9635bda508a449dccd22b5fef779af1441bef2cbc258c7dfed267fd504510 node-v14.17.3-linux-armv7l.tar.xz
589e11da7c68025d4ac2e1e2a9a3b1b16dea1424ca8eb91c5aede1a0b24ef976 node-v14.17.3-linux-ppc64le.tar.gz
c1854583d9bb883f17aa2b953d2f0b62b03d88098cb8548818acdb6b7ccb27b4 node-v14.17.3-linux-ppc64le.tar.xz
cca4aff08dee444f663608253d6be530de7eddf62609f4d001b8bfe6f0311f74 node-v14.17.3-linux-s390x.tar.gz
4f69c30732f94189b9ab98f3100b17f1e4db2000848d56064e887be1c28e81ae node-v14.17.3-linux-s390x.tar.xz
7ef1f7dae52a3ec99cda9cf29e655bc6e61c2c48e496532d83d9f17ea108d5d8 node-v14.17.3-linux-x64.tar.gz
d659d78144042a1801f35dd611d0fab137e841cde902b2c6a821163a5e36f105 node-v14.17.3-linux-x64.tar.xz
e78487a3f52d279cd62a353dc40adcb1a802782941c4f5ac8985446177c6d97a node-v14.17.3.pkg
dcbd156506ee79ee48439257626ca0a6db3d7eab8cb0208db6979125ae7d3a95 node-v14.17.3.tar.gz
4b8b4b5e1b360f9e51dd72130eec21b79f5832ca55200393c657e9ad76697f48 node-v14.17.3.tar.xz
7d9b143760100ae12eb8e000f0bce7a23fe65b63e428802935fe5ddf7887141d node-v14.17.3-win-x64.7z
170fb4f95539d1d7e1295fb2556cb72bee352cdf81a02ffb16cf6d50ad2fefbf node-v14.17.3-win-x64.zip
3fe56227a2f3ed935e62a9236eb7f1cc21abc7d1b26488c697bd6ab1381b9022 node-v14.17.3-win-x86.7z
d3e78dd602e5ba30c5754d79ef75a8620de51a38b29ad071390f082fa38d7f32 node-v14.17.3-win-x86.zip
964e36aa518b17ab04c3a49a0f5641a6bd8a9dc2b57c18272b6f90edf026f5dc node-v14.17.3-x64.msi
b5bea503f45058a6acd0900bfe7e52deba12dcc1769808eece93b42bce40c7d8 node-v14.17.3-x86.msi
87c50410cd196b8f1409fe34bd5710047dd01580d692c764301a2be44b5c9531 win-x64/node.exe
2166a3ae8728f872727ced97eaccdc8e463ae3c00b7dcb94c3b9da80feedb735 win-x64/node.lib
c3a738d1f691b7b210eb58d2e4b0aad8564dde817573d74f54827ef9a8fbf8dc win-x64/node_pdb.7z
fbd5e3eb5f8e30f343eda7247a5b99b31d23618d9ead7ceff0fb59ee0a794647 win-x64/node_pdb.zip
12e009502543b5cc8bf93b45d3749ebb41ba245125f95c7b9fbf8ce61f24bfaa win-x86/node.exe
bab3fdbacbd6621e27762c559041723dc35d3122ddfd153f81315aaab78646ae win-x86/node.lib
8a0c927d23c104dba0d1e49eddc3663e5940fe5c7a6f7668423fb7b88a172349 win-x86/node_pdb.7z
ddac85191d937d8c5f389aeab44fa51aa0746670a070f7d02224eb5bbaafc718 win-x86/node_pdb.zip
-----BEGIN PGP SIGNATURE-----
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=FSBY
-----END PGP SIGNATURE-----

Node v16.4.2(현재 버전)

주요 변경사항

Node.js 16.4.1에서 발생한, 영어가 아닌 로케일에서 Windows 설치 프로그램에 생긴 회귀 문제를 이번 릴리스에서 수정했습니다.
Windows 설치 프로그램을 사용하지 않으면 이번 릴리스를 다운로드받을 필요가 없습니다.

Commits

  • [76e709ec63] - win,msi: use localized “Authenticated Users” name (Richard Lau) #39241

Windows 32-bit Installer: https://nodejs.org/dist/v16.4.2/node-v16.4.2-x86.msi

Windows 64-bit Installer: https://nodejs.org/dist/v16.4.2/node-v16.4.2-x64.msi

Windows 32-bit Binary: https://nodejs.org/dist/v16.4.2/win-x86/node.exe

Windows 64-bit Binary: https://nodejs.org/dist/v16.4.2/win-x64/node.exe

macOS 64-bit Installer: https://nodejs.org/dist/v16.4.2/node-v16.4.2.pkg

macOS Apple Silicon 64-bit Binary: https://nodejs.org/dist/v16.4.2/node-v16.4.2-darwin-arm64.tar.gz

macOS Intel 64-bit Binary: https://nodejs.org/dist/v16.4.2/node-v16.4.2-darwin-x64.tar.gz

Linux 64-bit Binary: https://nodejs.org/dist/v16.4.2/node-v16.4.2-linux-x64.tar.xz

Linux PPC LE 64-bit Binary: https://nodejs.org/dist/v16.4.2/node-v16.4.2-linux-ppc64le.tar.xz

Linux s390x 64-bit Binary: https://nodejs.org/dist/v16.4.2/node-v16.4.2-linux-s390x.tar.xz

AIX 64-bit Binary: https://nodejs.org/dist/v16.4.2/node-v16.4.2-aix-ppc64.tar.gz

ARMv7 32-bit Binary: https://nodejs.org/dist/v16.4.2/node-v16.4.2-linux-armv7l.tar.xz

ARMv8 64-bit Binary: https://nodejs.org/dist/v16.4.2/node-v16.4.2-linux-arm64.tar.xz

Source Code: https://nodejs.org/dist/v16.4.2/node-v16.4.2.tar.gz

Other release files: https://nodejs.org/dist/v16.4.2/

Documentation: https://nodejs.org/docs/v16.4.2/api/

SHASUMS

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

face4ef55857571cefeac04be0b9381cb4ec97512fd5f843a7c44d5cea467b95 node-v16.4.2-aix-ppc64.tar.gz
94f2890a3f68044bb89891d25063cc07bcd1e3754d27cfbcdeffeb0dc8cff592 node-v16.4.2-darwin-arm64.tar.gz
e162508475e73715bc02097d439e03e5673e36cd38ec11310182f00e06fb4089 node-v16.4.2-darwin-arm64.tar.xz
51baebe96a70287fcbabafaca4c1704c610514e629e7c895b1d145ea0adc9ce6 node-v16.4.2-darwin-x64.tar.gz
af73f320c17cab30130c35946d080349dc3faa4ad46c1292055813c4f9b96080 node-v16.4.2-darwin-x64.tar.xz
150ebef4a382795289a9780808804f97d104f19086e7d575ddc483c1c7ce3e8f node-v16.4.2-headers.tar.gz
7232a37bde0536c476ca6cbe3a9315a1ad7e87d51e314d65f6ce177d6c9c70b6 node-v16.4.2-headers.tar.xz
5860164738d8d5403effe46b296260a599af1d4de9743555880985b1aeb2b57f node-v16.4.2-linux-arm64.tar.gz
7859f9228c267656a0aa0b24d59ff22bd10385e291c6a916f7a1aaa4503444d6 node-v16.4.2-linux-arm64.tar.xz
5d056d44eb7fa7e62ffaac1d270c09fe8f77bf926de5519dbda6257cb86f5234 node-v16.4.2-linux-armv7l.tar.gz
1290b61057cd68802fb78a8217276d66299de4131c7a5d44664d58fca8809a77 node-v16.4.2-linux-armv7l.tar.xz
c51f6ff2bc86c5ae689a6b9091e575c79695e0992b0c83d5a997899ac6b23edd node-v16.4.2-linux-ppc64le.tar.gz
4a498e2c183cadd02fdacc12b75a35d8980ace4c0a356b93bd406e97b647c118 node-v16.4.2-linux-ppc64le.tar.xz
a42a67e81e378d3f208cb41571adee53bad7ab10d65c3f047633a8f8ca5a2b60 node-v16.4.2-linux-s390x.tar.gz
a06dd8a5d4180f98a358dff837567641c01f0cbb8f82c2f3e1c624eb900ae6f1 node-v16.4.2-linux-s390x.tar.xz
710a6955f5f500030f97d0deef6c15ef25533b9a7de66796248229b37ce07704 node-v16.4.2-linux-x64.tar.gz
fcb022602ca97fadbf6fb27621dab7198238c29376304cc5ab5f0f8d155557f9 node-v16.4.2-linux-x64.tar.xz
d5a7b4d2b9955279e4643be55e9352810f625d42e0bb193e0cc57c39b3f0cfbc node-v16.4.2.pkg
46d907a06fe020ee8d7e6753357b82edd16f3871f8caaa188841d29d265de7bd node-v16.4.2.tar.gz
b2898db82adbebf83358f2f02a74aaddcd20a607efc6ec4c54cdc46bff261d11 node-v16.4.2.tar.xz
aceb76cae3df1a28ad427040c965db97fd0b0e09a4d30a02f51b9b73bab80d6d node-v16.4.2-win-x64.7z
e167519b48fd1198f3e27621489ccc2dfa4b18d2af8753c668d9094d918d1256 node-v16.4.2-win-x64.zip
583dc4186ff3ae8ba032e92404a03196a1f1b0758924109786b3ed241eb7bfd7 node-v16.4.2-win-x86.7z
55525c92e4e4c8df9162dce4184a6f49feb8fcabb963578fe989f241850c5435 node-v16.4.2-win-x86.zip
6412f2cb303f1bc1167953e4252a22c142cd5c013301c7222b0e95f077bd3f04 node-v16.4.2-x64.msi
673d795619d512091ee6daf6cec871b668b001f0d3bf26897cd1b412aa505534 node-v16.4.2-x86.msi
14b486992afe1ecb35bd4fde7b35bbdd254bc5ddf9a1c620d637558593fdad83 win-x64/node.exe
4b5caea50ee2170fd752225477d77a8818965e3e8cbb9871ecbddf32bd6ed94d win-x64/node.lib
2fb494c4cbe59b68f89a8654e40473f2c4a9dcfac1c468a37aa38fcd707ae4bc win-x64/node_pdb.7z
688f3cb5fc6c6aebaf61fc087cc707bf2ec95fbc683fb422424800e6aec642c6 win-x64/node_pdb.zip
f11c4b02aa0394b6287cb6089d90697ba90a1cfaa4dbb253c8076f049545bd8b win-x86/node.exe
e899517caf4e57f674ff37ca8c9db892d676d86960698b2663bbe16e82fa2542 win-x86/node.lib
8759bf4e24259228b44ce296c620ace8fd36f5bfde1ba6cbdb5e3452239dd9b2 win-x86/node_pdb.7z
a6cc0cfcd09e636ff169c91b5b0e63f836ba2c3008784f7c730ad4b5360deed7 win-x86/node_pdb.zip
-----BEGIN PGP SIGNATURE-----

iQEzBAEBCAAdFiEETtd49TnjY0x3nIfG1wYoSKGrAFwFAmDjQYEACgkQ1wYoSKGr
AFx6Awf/ePYpxe/E43me7QBdzajugHYnU1ScplTylv2YM1GFyDXQ8ExxRJbCOEex
hYNvbZ/k3fKYKm5A+808T2CcrKh5af/pIoPsDBGOAG1DiCQyu2IxGAPFuhsFh/h1
EdipuRXVg5tqhOKwN1O4JS8CP6QnCRAUSHBdEoayZ9EXqKMXD0+KwqdWLTSp9mec
ZRubN57/C6OENFAXvKCTE44LKzBZqpFnwx3P430xYr7NBkIDWbqxvL7mEXGth7HF
lUnXhg6/UYr3nku2OPuoMWI1o4LC7871iIzUKcjryx4Uofb9oEfeaFPJZxSXXExB
288BgVTPPFf4+pXEOoBSwhpjp/7bgw==
=jJDH
-----END PGP SIGNATURE-----

Node v12.22.2(LTS)

주요 변경사항

다음 취약점을 수정했습니다.

  • CVE-2021-22918: libuv 업그레이드 - 범위를 벗어난 읽기(중간)
    • Node.js는 문자열을 ASCII로 변환하는데 사용하는 libuv의 uv__idna_toascii() 함수에서
      범위를 벗어난 읽기에 취약합니다. 이 함수는 Node dns 모듈의 lookup() 함수에서 호출하고 정보를
      노출하거나 크래시가 발생할 수 있습니다. 자세한 내용은
      https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22918에서 볼 수 있습니다.
  • CVE-2021-22921: Node 설치 프로그램의 로컬 권한 확대(중간)
    • Node.js는 Windows 플랫폼에서 특정 상황에 로컬 권한 확대 공격에 취약합니다. 더 자세히는
      설치 디렉터리의 부적절한 권한 설정으로 공격자가 확대 공격인 PATH와 DLL 하이재킹 공격을 할 수
      있습니다. 자세한 내용은
      https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22921에서 볼 수 있습니다.
  • CVE-2021-27290: npm upgrade - ssri 정규표현식 서비스 거부(ReDoS)(높음)
  • CVE-2021-23362: npm upgrade - hosted-git-info 정규표현식 서비스 거부(ReDoS)(중간)

Commits

Windows 32-bit Installer: https://nodejs.org/dist/v12.22.2/node-v12.22.2-x86.msi

Windows 64-bit Installer: https://nodejs.org/dist/v12.22.2/node-v12.22.2-x64.msi

Windows 32-bit Binary: https://nodejs.org/dist/v12.22.2/win-x86/node.exe

Windows 64-bit Binary: https://nodejs.org/dist/v12.22.2/win-x64/node.exe

macOS 64-bit Installer: https://nodejs.org/dist/v12.22.2/node-v12.22.2.pkg

macOS Intel 64-bit Binary: https://nodejs.org/dist/v12.22.2/node-v12.22.2-darwin-x64.tar.gz

Linux 64-bit Binary: https://nodejs.org/dist/v12.22.2/node-v12.22.2-linux-x64.tar.xz

Linux PPC LE 64-bit Binary: https://nodejs.org/dist/v12.22.2/node-v12.22.2-linux-ppc64le.tar.xz

Linux s390x 64-bit Binary: https://nodejs.org/dist/v12.22.2/node-v12.22.2-linux-s390x.tar.xz

AIX 64-bit Binary: https://nodejs.org/dist/v12.22.2/node-v12.22.2-aix-ppc64.tar.gz

SmartOS 64-bit Binary: https://nodejs.org/dist/v12.22.2/node-v12.22.2-sunos-x64.tar.xz

ARMv7 32-bit Binary: https://nodejs.org/dist/v12.22.2/node-v12.22.2-linux-armv7l.tar.xz

ARMv8 64-bit Binary: https://nodejs.org/dist/v12.22.2/node-v12.22.2-linux-arm64.tar.xz

Source Code: https://nodejs.org/dist/v12.22.2/node-v12.22.2.tar.gz

Other release files: https://nodejs.org/dist/v12.22.2/

Documentation: https://nodejs.org/docs/v12.22.2/api/

SHASUMS

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

6e55248464241a1a2e025872c02becf49ab4a989576a5a40fdabc7c11c2cb449 node-v12.22.2-aix-ppc64.tar.gz
293156b4ab199ed2775e4b4c69dbd6d3730fe0a099be8c354d5628652ff0ec3a node-v12.22.2-darwin-x64.tar.gz
99fc13a8e1592be75183abeea8479c49c20a28e34003d3b47ddbbb3bf0825d74 node-v12.22.2-darwin-x64.tar.xz
737fef9dd325c7154670e1846a09c16377fc2a6245031465d1e388cf23c481bc node-v12.22.2-headers.tar.gz
af16ebb7e35ab2274bd2a6685c20ccb7a331046e9eed4b432e9e287be6fc0fe1 node-v12.22.2-headers.tar.xz
40f4a6a887e3ab8675e71bdc544353e078775074ec9f7911cfe3827ad68007fb node-v12.22.2-linux-arm64.tar.gz
ab9b950b80bad8e9070129438cabd548a31dc9c292d41341453d22920f49cdbb node-v12.22.2-linux-arm64.tar.xz
b96aa9b7cefda490c0cc5f91ef9dcd1a1d59cd7e9891bebc1827a99bdc3dea76 node-v12.22.2-linux-armv7l.tar.gz
dee507935ecfd2b3e01a27a0d2307d8b20e7e105bd82560859919c09e717eef9 node-v12.22.2-linux-armv7l.tar.xz
a3012c6eda500322f300cfc22afbe7b3b4bfb7c9165b735670221d7f6beceef2 node-v12.22.2-linux-ppc64le.tar.gz
ee9a11f1fbbd29879c5ea90ac8e93420f2d05042802a89f70470e60cda7d382c node-v12.22.2-linux-ppc64le.tar.xz
ed4594abf3a572ef4f247310a6534f874d2f3de5ac49012dc0314136eb190c2c node-v12.22.2-linux-s390x.tar.gz
38ef8f8db5c4eaba9cc919811a65933dfe0844564569e1cf8acb4a96b27d77ec node-v12.22.2-linux-s390x.tar.xz
2898ac962602443fedeaaccf61b33f127c97f7c9d7b23fbe0d78a4d20b69db0b node-v12.22.2-linux-x64.tar.gz
c17f838cec2eb111048342543d23a74bcab7459a4374615ff4124940a717377a node-v12.22.2-linux-x64.tar.xz
461b3637a576a4030a369fa116d8376d72b7b84c9d40e21650b2f6423c965269 node-v12.22.2.pkg
735e1d050790470683125e02d4f085313fc11e8aaa696ca09f4dc3b1bf7b6f2f node-v12.22.2-sunos-x64.tar.gz
752507716a94731b59a581a69e746bc04ec3f006b2f29277ff85a77b1224c675 node-v12.22.2-sunos-x64.tar.xz
210a550c47056f29537e1b5b73cb78a88c44609c3b92aa003cf7862d3904ef99 node-v12.22.2.tar.gz
7fd805571df106f086f4c45e131efed98bfd62628d9dec96bd62f8c11b0c48dc node-v12.22.2.tar.xz
d5d04f560ce321b5fd803f9676b7d430d7218d270a5ce561a11f1e3c1b6ebdd7 node-v12.22.2-win-x64.7z
c42cd8c8d8c10faeff8ed02d2d3c5214feb519873ced78c47d0374847843110b node-v12.22.2-win-x64.zip
730dc503eb1b6704dc7d97001c33d5f12a374a5e52ba8ad53bb3bc53b23739b8 node-v12.22.2-win-x86.7z
179a7837e2bf1478ea36515942efbcbfec5e45fea5eb526074016cee310cfa8a node-v12.22.2-win-x86.zip
5f5416f96c015278ab9a3c5d1e53c82293e0b1fa91f440d4159a4d4ba54a7805 node-v12.22.2-x64.msi
de6fad6d89dc0ed1749dc2d15ba26267961732c569cd79904d903868c2680973 node-v12.22.2-x86.msi
baa4a8ee5fdd7c98ff2cccc59523f10e5ca21df518e2fc4d8ff628cc974c9982 win-x64/node.exe
28e5c24831deedbf4fb8a9560f2c4f95205479c589f54a9a53ec346f6a5cf8bf win-x64/node.lib
d27fa6c9f89ff31193ed99664f34250305e137900e3d2bc07e3ff7d0393ea644 win-x64/node_pdb.7z
5403fdbd09880f02754f749fe59a0ce225a3ef4f2fe0372c23ac0b9c233717f4 win-x64/node_pdb.zip
31857477fb99710529b0c89f2635629ecffca166ddea633f6926a8ee419eb4d1 win-x86/node.exe
8bbcf3b9305b83f54bd80f8ec19d4e237841bde5bfaeb2aec708c36daa6435f6 win-x86/node.lib
efe340a69f091eaa9c2def41152259559171f603ba7d3ef5e3b7dffc589efff5 win-x86/node_pdb.7z
e2bbb4249e5a18e6b7efac1f0faa2625888e66f6517e419ea18fa9c9e04acc22 win-x86/node_pdb.zip
-----BEGIN PGP SIGNATURE-----
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=j1ft
-----END PGP SIGNATURE-----

Node v14.17.2(LTS)

주요 변경사항

다음 취약점을 수정했습니다.

  • CVE-2021-22918: libuv 업그레이드 - 범위를 벗어난 읽기(중간)
    • Node.js는 문자열을 ASCII로 변환하는데 사용하는 libuv의 uv__idna_toascii() 함수에서
      범위를 벗어난 읽기에 취약합니다. 이 함수는 Node dns 모듈의 lookup() 함수에서 호출하고 정보를
      노출하거나 크래시가 발생할 수 있습니다. 자세한 내용은
      https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22918에서 볼 수 있습니다.
  • CVE-2021-22921: Node 설치 프로그램의 로컬 권한 확대(중간)
    • Node.js는 Windows 플랫폼에서 특정 상황에 로컬 권한 확대 공격에 취약합니다. 더 자세히는
      설치 디렉터리의 부적절한 권한 설정으로 공격자가 확대 공격인 PATH와 DLL 하이재킹 공격을 할 수
      있습니다. 자세한 내용은
      https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22921에서 볼 수 있습니다.

Commits

Windows 32-bit Installer: https://nodejs.org/dist/v14.17.2/node-v14.17.2-x86.msi

Windows 64-bit Installer: https://nodejs.org/dist/v14.17.2/node-v14.17.2-x64.msi

Windows 32-bit Binary: https://nodejs.org/dist/v14.17.2/win-x86/node.exe

Windows 64-bit Binary: https://nodejs.org/dist/v14.17.2/win-x64/node.exe

macOS 64-bit Installer: https://nodejs.org/dist/v14.17.2/node-v14.17.2.pkg

macOS Intel 64-bit Binary: https://nodejs.org/dist/v14.17.2/node-v14.17.2-darwin-x64.tar.gz

Linux 64-bit Binary: https://nodejs.org/dist/v14.17.2/node-v14.17.2-linux-x64.tar.xz

Linux PPC LE 64-bit Binary: https://nodejs.org/dist/v14.17.2/node-v14.17.2-linux-ppc64le.tar.xz

Linux s390x 64-bit Binary: https://nodejs.org/dist/v14.17.2/node-v14.17.2-linux-s390x.tar.xz

AIX 64-bit Binary: https://nodejs.org/dist/v14.17.2/node-v14.17.2-aix-ppc64.tar.gz

ARMv7 32-bit Binary: https://nodejs.org/dist/v14.17.2/node-v14.17.2-linux-armv7l.tar.xz

ARMv8 64-bit Binary: https://nodejs.org/dist/v14.17.2/node-v14.17.2-linux-arm64.tar.xz

Source Code: https://nodejs.org/dist/v14.17.2/node-v14.17.2.tar.gz

Other release files: https://nodejs.org/dist/v14.17.2/

Documentation: https://nodejs.org/docs/v14.17.2/api/

SHASUMS

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

fb4348515d67085153c58d7b5114ca71690e3938d6c6000a02a7977cf154290a node-v14.17.2-aix-ppc64.tar.gz
e45db91fc2136202868a5eb7c6d08b0a2b75394fafdf8538f650fa945b7dee16 node-v14.17.2-darwin-x64.tar.gz
1b5227ec537a456ce4f3af9631db652e7fd3ab8ac7b9a38be117e0bc2f54d1d5 node-v14.17.2-darwin-x64.tar.xz
ccda5c3ce6dd51e6901cd227c1e6b39b17efa1dfe17fcc5ae1cde15d88cbb05c node-v14.17.2-headers.tar.gz
935e8661db59ab51e4079fbcafd70185ad65ac0924cc48209d976faf69a3b286 node-v14.17.2-headers.tar.xz
05117e74f424fd4ab744c3013c77906c5fe4a19fa22ce624a21986ce152fd258 node-v14.17.2-linux-arm64.tar.gz
3aff08c49b8c0c3443e7a9ea9bfe607867d79e6e5ccf204a5c8f13fb92a48abd node-v14.17.2-linux-arm64.tar.xz
c5b3447eda84a402e604a3ca317747f8f3661b1c9cb68f73a2e2f5a39ed95533 node-v14.17.2-linux-armv7l.tar.gz
0ef956711d6f984b2f7a2e8a3c5d1f274668fd50ba73a4f4580dc72e4d7dff87 node-v14.17.2-linux-armv7l.tar.xz
d94681c9953a68cfbc3903edbe680d9068581c140a5d24c265e557c2e0a57a51 node-v14.17.2-linux-ppc64le.tar.gz
64364f96ff04083bf91ee82a2e27ae6d45a4b8512d38e70da976909db5400d2a node-v14.17.2-linux-ppc64le.tar.xz
9b60ec8bb3675f3648b1474a4d911838ca11630e07ec99230a078937e73be158 node-v14.17.2-linux-s390x.tar.gz
76f955856626a3e596b438855fdfe438937623dc71af9a25a8466409be470877 node-v14.17.2-linux-s390x.tar.xz
48cc87b7adb13f479643166a16514861556d0936761b317a3b65f4fbbb265b4d node-v14.17.2-linux-x64.tar.gz
6cf9db7349407c177b36205feec949729d0ee9db485e19b10b0b1ffca65a3a46 node-v14.17.2-linux-x64.tar.xz
16286b9d41238dc85af791aafc71523cdc8456cd7eccebdf92f8368ce879e363 node-v14.17.2.pkg
03bea54a68c6fa8b520c273a1dc80f2fdbf80ddc9c303200d2eeaf25bd7e62fa node-v14.17.2.tar.gz
4f5fb2b87e2255da3b200ed73ab076002e4b088df0027ec85e25541a6830583e node-v14.17.2.tar.xz
6f59257b20861efb506f9b7f5b8587a310c6df6de4d719324ae8f3dcda68bcbc node-v14.17.2-win-x64.7z
0e27897578752865fa61546d75b20f7cd62957726caab3c03f82c57a4aef5636 node-v14.17.2-win-x64.zip
b5b2f6d2523b0c60399111b4c60ee3066d6e7e51fe22ce045c5181d52dd2dd20 node-v14.17.2-win-x86.7z
308e3e2228cd6b0e991fd9d23dcd0c57f913926355adcb702f9660a1574a79fa node-v14.17.2-win-x86.zip
452a94f6db29ea6ef298cb731765c615624eed2c8bd8746c827d5abbed89a5de node-v14.17.2-x64.msi
92443d36339a76f39102e785ecf663a072d26c9c45a2b4b68ddb82ae54345682 node-v14.17.2-x86.msi
140fd660d63eab02812ec583a4c958c9252f041a92d76047c63ac34d773aab66 win-x64/node.exe
2166a3ae8728f872727ced97eaccdc8e463ae3c00b7dcb94c3b9da80feedb735 win-x64/node.lib
a79264dcce6c4f6aba147aee4bfd9e6b69b4134f07e487d381efecf771f7e275 win-x64/node_pdb.7z
2a57321f0767c3a89a8dfd5355ac2c0ccdec728da97a8f5bd3bd53ea4252eb0e win-x64/node_pdb.zip
2695c86b7000623119abfd7b9aed48c04d5ae4247ea7398ff2c77f61907d531f win-x86/node.exe
bab3fdbacbd6621e27762c559041723dc35d3122ddfd153f81315aaab78646ae win-x86/node.lib
dc5a8c41b0ceaea49dadd0ff53b25837809a90e75222b3f34c5c01325a52bd26 win-x86/node_pdb.7z
f5e6ae2fcc35f94749e8404f909734649e5617ac3e41ce326fb2601cbf72c862 win-x86/node_pdb.zip
-----BEGIN PGP SIGNATURE-----
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=08xu
-----END PGP SIGNATURE-----

Node v16.4.1(현재 버전)

주요 변경사항

다음 취약점을 수정했습니다.

  • CVE-2021-22918: libuv 업그레이드 - 범위를 벗어난 읽기(중간)
    • Node.js는 문자열을 ASCII로 변환하는데 사용하는 libuv의 uv__idna_toascii() 함수에서
      범위를 벗어난 읽기에 취약합니다. 이 함수는 Node dns 모듈의 lookup() 함수에서 호출하고 정보를
      노출하거나 크래시가 발생할 수 있습니다. 자세한 내용은
      https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22918에서 볼 수 있습니다.
  • CVE-2021-22921: Node 설치 프로그램의 로컬 권한 확대(중간)
    • Node.js는 Windows 플랫폼에서 특정 상황에 로컬 권한 확대 공격에 취약합니다. 더 자세히는
      설치 디렉터리의 부적절한 권한 설정으로 공격자가 확대 공격인 PATH와 DLL 하이재킹 공격을 할 수
      있습니다. 자세한 내용은
      https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22921에서 볼 수 있습니다.

Commits

Windows 32-bit Installer: https://nodejs.org/dist/v16.4.1/node-v16.4.1-x86.msi

Windows 64-bit Installer: https://nodejs.org/dist/v16.4.1/node-v16.4.1-x64.msi

Windows 32-bit Binary: https://nodejs.org/dist/v16.4.1/win-x86/node.exe

Windows 64-bit Binary: https://nodejs.org/dist/v16.4.1/win-x64/node.exe

macOS 64-bit Installer: https://nodejs.org/dist/v16.4.1/node-v16.4.1.pkg

macOS Apple Silicon 64-bit Binary: https://nodejs.org/dist/v16.4.1/node-v16.4.1-darwin-arm64.tar.gz

macOS Intel 64-bit Binary: https://nodejs.org/dist/v16.4.1/node-v16.4.1-darwin-x64.tar.gz

Linux 64-bit Binary: https://nodejs.org/dist/v16.4.1/node-v16.4.1-linux-x64.tar.xz

Linux PPC LE 64-bit Binary: https://nodejs.org/dist/v16.4.1/node-v16.4.1-linux-ppc64le.tar.xz

Linux s390x 64-bit Binary: https://nodejs.org/dist/v16.4.1/node-v16.4.1-linux-s390x.tar.xz

AIX 64-bit Binary: https://nodejs.org/dist/v16.4.1/node-v16.4.1-aix-ppc64.tar.gz

ARMv7 32-bit Binary: https://nodejs.org/dist/v16.4.1/node-v16.4.1-linux-armv7l.tar.xz

ARMv8 64-bit Binary: https://nodejs.org/dist/v16.4.1/node-v16.4.1-linux-arm64.tar.xz

Source Code: https://nodejs.org/dist/v16.4.1/node-v16.4.1.tar.gz

Other release files: https://nodejs.org/dist/v16.4.1/

Documentation: https://nodejs.org/docs/v16.4.1/api/

SHASUMS

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

d0f079c4bc78ee9e1eb646434bc52730c59e433f75febee70ee5506a5526eead node-v16.4.1-aix-ppc64.tar.gz
c6e2a79873c4afbd9fcd7e9d2889e2a7b84860bea472a07ccbe33387397990f5 node-v16.4.1-darwin-arm64.tar.gz
e8d2c3e90e93f3456e8f33e900c4eb404f8456b584e78550a12218aa89689fff node-v16.4.1-darwin-arm64.tar.xz
c78fecdfb062c51ba0432d1c6bb8f30eb14daf47001a5f68d17b3ae6d4d9eb31 node-v16.4.1-darwin-x64.tar.gz
3840f63f73513bfe60aac2a7180501f2b7e8b04806ed0ff0c100042f01bf5612 node-v16.4.1-darwin-x64.tar.xz
85b46ae7c3f2f6482a9a009cffe36ae4ead98f936d05a4e602eb32de148c4345 node-v16.4.1-headers.tar.gz
95d1cc071266739cbb2421a8419bae13652007701165549f0ae584863d11dd8e node-v16.4.1-headers.tar.xz
5d50cb3ce5b5ecccead1d0cf4e18e038c580e10733ff510f73d04a711092569c node-v16.4.1-linux-arm64.tar.gz
7519f43bc704bbb86af6162bad967eb0a277466b6b8c3e0b17dd367d86a97b27 node-v16.4.1-linux-arm64.tar.xz
b8df70739ffb058d4771722384e818fc5f9f0a5e096a45f1bfe7919b3173d32e node-v16.4.1-linux-armv7l.tar.gz
ab8a575ffd154b1faab4c94be5bcb961f6ed1dcc79afa18489dcdb1eea7e660b node-v16.4.1-linux-armv7l.tar.xz
49a3f2958e1e822d4053adf7c006ccf230ca7dc4f830bea789163fd093184160 node-v16.4.1-linux-ppc64le.tar.gz
72607271437948a6470063bc8bbb622ae1da60899217526b60ab2594fdff6b10 node-v16.4.1-linux-ppc64le.tar.xz
c3162a66943a0871423f94c8697c0bbfa2dc8a8474e63fa67a0cdd7f3618aca7 node-v16.4.1-linux-s390x.tar.gz
d472d95911c46bcae6e83ce2ea4312d544ee5ead6d8a6639ba40e51ad5678269 node-v16.4.1-linux-s390x.tar.xz
21181395c11ee1d13c05c4e07b1f4e36ba501d92030ac60a901291c50915b320 node-v16.4.1-linux-x64.tar.gz
3c73b58051a4435d605f9842e582a252e100d5ff62e0a30e3961cab71e8477b1 node-v16.4.1-linux-x64.tar.xz
d4eec360becc29d06b4ee7ee41ab3bf07bd8f4d979d911e18b5ed4ba9841a17f node-v16.4.1.pkg
562df905fdc9c8b3854fea1c755cc969b3c1437774d28b513457cc4034136458 node-v16.4.1.tar.gz
769014432ed8e16267c70b834999e76c48193cd8523ca4f3ee4eadaae7f32aa8 node-v16.4.1.tar.xz
0bec96b5b22ca6d4eead44003011fcdb44af0d331bb1fc8af0647f95cd9feb65 node-v16.4.1-win-x64.7z
f2f0dfc9ee54aff908575734713c482d76bfbed14dcfaea4931fff7450753f25 node-v16.4.1-win-x64.zip
2eec50ab1e34eb99af2819dd92a272e44944dc5b3fbf74c3ab25355feccc97c4 node-v16.4.1-win-x86.7z
a505508994890e418757ea88a55a9685914f57643ec5fb5737c28c5c8b6a1abe node-v16.4.1-win-x86.zip
a6c50420ab8e65df482e841a41a309582445480f2682e58ba3af30edf558b43b node-v16.4.1-x64.msi
f05522114177fd5acf49b2c81aca438f3c88284c5d69196efc2df8bb43cb8090 node-v16.4.1-x86.msi
3b69159360b235d20cd8a35a63562ffd8e96f1032dbd3c0980a6ff794968cc07 win-x64/node.exe
4b5caea50ee2170fd752225477d77a8818965e3e8cbb9871ecbddf32bd6ed94d win-x64/node.lib
ba7c1a22e2a59a73aaeab4c8d56826b705c2da00a57c94d3a3d6b1b460cb8cff win-x64/node_pdb.7z
36b27e73b3132bc6fae11d75f648fe4c35efef2002dfed03a9784f145445f17e win-x64/node_pdb.zip
8fd7ef41cf3a394ace65922babe7db8108374cf0c4cfba5613be61fb147cf141 win-x86/node.exe
e899517caf4e57f674ff37ca8c9db892d676d86960698b2663bbe16e82fa2542 win-x86/node.lib
aafaf686584d890a7b580cb16a9f898a299f3a1c91ae720224a858a9bc5c2f89 win-x86/node_pdb.7z
359ef4b5be217ed189910ae806a57fa555874a5ae2b2e1200b2754ff90942a1c win-x86/node_pdb.zip
-----BEGIN PGP SIGNATURE-----

iQEzBAEBCAAdFiEETtd49TnjY0x3nIfG1wYoSKGrAFwFAmDd4aEACgkQ1wYoSKGr
AFyTuQf+PGAx0iu/qHynzVfoiixzCeugk9HEegU2Sj8oovmnok/bGKFxWTTl+SYj
6h70KpfObXgy5TyczvX1KsuabcFQ+wwSASUtnJcnaG1bKwP1JJOZbvKUwkxEVtDe
/jV1sUr8eAgI0K9SwKn7jRGwaUp88XEKdxlX9Vbio91X0OD9KWkilg6haX+/ccLa
AlaOgmo4lvP8kgycD1AKytZwQOA+BQqhF86C1/+QIQa5EiP/mWztZEzpvUMxFvwU
/CPZPriYuOvXIfzbthGJOEfccU25VJKNaJTIj12UEH54UjWnz0UPCZhQLtBUwLmC
odXiC6kU7Hjq2bFq+Gss4fGmt7LvAA==
=e3hn
-----END PGP SIGNATURE-----

2021년 7월 보안 릴리스

(2021년 7월 1일 업데이트) 보안 릴리스를 사용할 수 있습니다.

다음 이슈에 대해 v16.x, v14.x, v12.x 버전의 Node.js 릴리스 라인의 업데이트를 이용할 수 있습니다.

libuv 업그레이드 - 범위를 벗어난 읽기(중간) (CVE-2021-22918)

Node.js는 문자열을 ASCII로 변환하는데 사용하는 libuv의 uv__idna_toascii() 함수에서
범위를 벗어난 읽기에 취약합니다. 이 함수는 Node dns 모듈의 lookup() 함수에서 호출하고 정보를
노출하거나 크래시가 발생할 수 있습니다.

자세한 내용은 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22918에서
볼 수 있습니다.

영향받는 버전:

  • 16.x, 14.x, 12.x 릴리스 라인의 모든 버전

Windows 설치 프로그램 - Node 설치 프로그램의 로컬 권한 확대(중간) (CVE-2021-22921)

Node.js는 Windows 플랫폼에서 특정 상황에 로컬 권한 확대 공격에 취약합니다. 더 자세히는
설치 디렉터리의 부적절한 권한 설정으로 공격자가 확대 공격인 PATH와 DLL 하이재킹 공격을 할 수 있습니다.

자세한 내용은 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22921에서
볼 수 있습니다.

영향받는 버전:

  • 16.x, 14.x, 12.x 릴리스 라인의 모든 버전

npm 업그레이드 - ssri 정규표현식 서비스 거부(ReDoS)(높음) (CVE-2021-27290)

서비스 거부 공격에 취약할 수 있는 ssri npm 모듈의 취약성입니다.

자세한 내용은 https://github.com/advisories/GHSA-vx3p-948g-6vhq에서
볼 수 있습니다.

영향받는 버전:

  • 12.x 릴리스 라인의 모든 버전
  • 최신 npm 6 업데이트를 포함한 14.17.0보다 이전에 나온 14.x 릴리스 라인의 모든 버전

npm 업그레이드 - hosted-git-info 정규표현식 서비스 거부(ReDoS)(중간) (CVE-2021-23362)

서비스 거부 공격에 취약할 수 있는 hosted-git-info npm 모듈의 취약성입니다.

자세한 내용은 https://nvd.nist.gov/vuln/detail/CVE-2021-23362에서
볼 수 있습니다.

영향받는 버전:

  • 12.x 릴리스 라인의 모든 버전
  • 최신 npm 6 업데이트를 포함한 14.17.0보다 이전에 나온 14.x 릴리스 라인의 모든 버전

다운로드와 릴리스 상세 내용


요약

Node.js 프로젝트는 2021년 7월 1일 목요일쯤 지원하는 모들 릴리스 라인의 최신 버전을 릴리스할 것입니다.

  • 높은 심각도의 이슈 하나와 중간 심각도의 이슈 3개

영향

Node.js 16.x 릴리스 라인은 중간 심각도의 이슈 두 개에 취약합니다.

Node.js 14.x 릴리스 라인은 중간 심각도의 이슈 두 개에 취약합니다.

Node.js 12.x 릴리스 라인은 높은 심각도 이슈 한 개와 중간 심각도의 이슈 세 개에 취약합니다.

릴리스 시기

릴리스는 2021년 7월 1일 목요일쯤 사용 가능할 예정입니다.

연락처 및 향후 업데이트

현재 Node.js의 보안 정책은 https://nodejs.org/en/security/에서 볼 수 있습니다.
Node.js의 취약점을 보고하고 싶다면
https://github.com/nodejs/node/blob/master/SECURITY.md에 정리된 절차를 따르기 바랍니다.

Node.js의 보안 취약점과 보안과 관련된 릴리스의 최신 정보를 얻으려면
https://groups.google.com/forum/#!forum/nodejs-sec에서 소수의 공지만 하는
nodejs-sec 메일링 리스트를 구독해 주세요. 이 프로젝트는 nodejs GitHub 조직에서 관리하고 있습니다.

Node v16.4.0(현재 버전)

주요 변경사항

  • async_hooks:
    • AsyncLocalStorage의 일부를 안정화시켰습니다. (Vladimir de Turckheim) #37675
  • deps:
    • npm의 버전을 7.18.1로 업그레이드했습니다. (npm-robot) #39065
    • V8을 9.1.269.36으로 업데이트했습니다. (Michaël Zasso) #38273
  • dns:
    • --dns-result-order로 기본 dns의 verbatim의 값을 변경할 수 있습니다. (Ouyang Yadong) #38099

Commits

Windows 32-bit Installer: https://nodejs.org/dist/v16.4.0/node-v16.4.0-x86.msi

Windows 64-bit Installer: https://nodejs.org/dist/v16.4.0/node-v16.4.0-x64.msi

Windows 32-bit Binary: https://nodejs.org/dist/v16.4.0/win-x86/node.exe

Windows 64-bit Binary: https://nodejs.org/dist/v16.4.0/win-x64/node.exe

macOS 64-bit Installer: https://nodejs.org/dist/v16.4.0/node-v16.4.0.pkg

macOS Apple Silicon 64-bit Binary: https://nodejs.org/dist/v16.4.0/node-v16.4.0-darwin-arm64.tar.gz

macOS Intel 64-bit Binary: https://nodejs.org/dist/v16.4.0/node-v16.4.0-darwin-x64.tar.gz

Linux 64-bit Binary: https://nodejs.org/dist/v16.4.0/node-v16.4.0-linux-x64.tar.xz

Linux PPC LE 64-bit Binary: https://nodejs.org/dist/v16.4.0/node-v16.4.0-linux-ppc64le.tar.xz

Linux s390x 64-bit Binary: https://nodejs.org/dist/v16.4.0/node-v16.4.0-linux-s390x.tar.xz

AIX 64-bit Binary: https://nodejs.org/dist/v16.4.0/node-v16.4.0-aix-ppc64.tar.gz

ARMv7 32-bit Binary: https://nodejs.org/dist/v16.4.0/node-v16.4.0-linux-armv7l.tar.xz

ARMv8 64-bit Binary: https://nodejs.org/dist/v16.4.0/node-v16.4.0-linux-arm64.tar.xz

Source Code: https://nodejs.org/dist/v16.4.0/node-v16.4.0.tar.gz

Other release files: https://nodejs.org/dist/v16.4.0/

Documentation: https://nodejs.org/docs/v16.4.0/api/

SHASUMS

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

7695554a71873ea2393248438508c5d73a4fc195f760a9317e33670826ab691f node-v16.4.0-aix-ppc64.tar.gz
771469be99d6af048d9b192cd7b338c68a4604e0fcc7f8804278c91b5ad3f74f node-v16.4.0-darwin-arm64.tar.gz
69847f02e277a5455e8ae06ccaeb6bb51672ff36aeda64c7f8a9c3dba87774e8 node-v16.4.0-darwin-arm64.tar.xz
95c81b54ea3069fcf230664d5d80b10e46f8fff5163644b7076fe48df13fc2fb node-v16.4.0-darwin-x64.tar.gz
2fe18b643d3846c22921b88041fcac6f6f532b7c1a60fc25e984de98c2466575 node-v16.4.0-darwin-x64.tar.xz
5085d9669b5df764faf234ad6d7ed1ce6c468d9f3c7f680c7b008d5be12dc4b2 node-v16.4.0-headers.tar.gz
92d8d154af3fdc31695e29d19a1541d55205c4e4dcfafdb2e826e79a39be29b3 node-v16.4.0-headers.tar.xz
8500c9b61717eeeb6f62ed88723dc4896b1bd0a38d8a0f8f8bfcd99e4879e921 node-v16.4.0-linux-arm64.tar.gz
dd8895d727f38f5d3bcfc9e6cfeeb5e61a55ef788ca23a789f87c4e36f8a599e node-v16.4.0-linux-arm64.tar.xz
0a40f6d679f8eccab2b9c43a385172fa0b0584246eef2c41c986fdf572206fa8 node-v16.4.0-linux-armv7l.tar.gz
f455f936e3ba97fc5150cb0e161a90cc1eeaa4d6c6b39b5c679cee792d21a5e5 node-v16.4.0-linux-armv7l.tar.xz
8b68bb6bb00af0db969e4c3c0f47bba408c71dfb3a33dd9a95336bd1f03769e8 node-v16.4.0-linux-ppc64le.tar.gz
a309bb0da47872988dfe4cab3e170856844ef1f61f62cd3c5202a096a5c5a1f5 node-v16.4.0-linux-ppc64le.tar.xz
9008300e37e088bf8abc8848208ac3fec23b4c26165c3b396c6a533e8c6b08da node-v16.4.0-linux-s390x.tar.gz
8dd5ae54694aaea813b7d3c499b57412f625dbaebdca389a1ed7377125726324 node-v16.4.0-linux-s390x.tar.xz
6fb7bc9aece48f2d94941c586ed5d541ac29c8981bc09585fcabe9e4b87d57fa node-v16.4.0-linux-x64.tar.gz
cb2076ea116f0132c2233ac00da306b3061cda2eacbd0fab5b1263e0c9ff0686 node-v16.4.0-linux-x64.tar.xz
14741dd37ce35dee9675ea0ed7134884db65e218e4841534229a53698c6a6484 node-v16.4.0.pkg
37e526b494a0ae53d2205421b93cc3d6fa2d9f4d8349891814a23e69d59a6d8d node-v16.4.0.tar.gz
f91e212e0b64d5fa745b15da4b8ac504acf72fb9216bfa77d3f66ca0e178c81d node-v16.4.0.tar.xz
19da293c890b41793516a97775e1bcfb94c62dfc0c38df3fdf830bde22c7d63c node-v16.4.0-win-x64.7z
2232f638c4913059e3de358d54629288092cd068553deaa60b9b46d6d760abcb node-v16.4.0-win-x64.zip
48e0a70a87c604371e67757d68008b4d5bb32c01862da9a3b3c9bdcb2a850639 node-v16.4.0-win-x86.7z
24fc12e114165d1671dc6cc8ee4e078b0795a49dc6895204510366db2f1252b0 node-v16.4.0-win-x86.zip
286223b111698ab68ea1c2bf7379e542ec47187baa00e905bdb55898eed3599a node-v16.4.0-x64.msi
56193c89e4091c9485a1e90a39b37b17dc64ffc6983cce978265471c289f5718 node-v16.4.0-x86.msi
afede6dc68ac545d90ee46247438b63661965c7d91aee04dd4efa2cbec7970c0 win-x64/node.exe
fe0a67955d3d9078a1495d936b59c9161ca8f8dbe29e95bfbf90a04b8bf6de23 win-x64/node.lib
7f2c849dfc3c3d0e915ee7ccbccdfd7711ef20288834d26807f743758512bec3 win-x64/node_pdb.7z
9297615005e2177a4576894f9e67902604fad1153d548a7c65e3670633bf18bd win-x64/node_pdb.zip
0b0d8a752c579838961b6ef8e4d2e7b7a9b839e7b73add30b8aa2889d3f92444 win-x86/node.exe
3a4e948add4fcb30eca711e7a76a3c16fe1f61ae7ab4eec85b80992ca96496fa win-x86/node.lib
8e41e601620d9d3ad0a68fc29071c7edbfd84b3f13e74e070ea2f791fb9a0a8f win-x86/node_pdb.7z
b1c72aa329f308c3a0aa5411ab18083aa384c84c33d133712fcb80d6f6b2d5d4 win-x86/node_pdb.zip
-----BEGIN PGP SIGNATURE-----

iQIzBAEBCAAdFiEEdPEmArbxxOkT+qN606iWE2Q7YgEFAmDTHtMACgkQ06iWE2Q7
YgFRJhAAzpwqIYTz79O4jiG92kkmMAxmEeBtg2PQ9t0zmC0jejgJbFbxOSRQ4JlG
A4DIzW3xnROjCpb9jQIGLoEiUKZFpqq3jtKpWbPceWioDzpswMs+rnguiIuWAg6R
QEEyAfqfM0ZY4jmxQoJyIe/dss2OxZdL5+57FsmAeoubcfxtEQjarwPyG3s4tbVu
scjU0WLfFhQdckNRTnCUN8llD10rvtlgG0vagaSmwsbwn4vsnZnpyfVU7m/ujxLd
cxIltUUf8jk5rxmQYy7ad3rPTeu8i4r75H1xHO1u5vFCyoiadCJK2JLbK+RiTge7
fu/aXvqLp8XXnZEobTo213AyJysmrBIPp42RuyRZV/oOsKK3mykbbaqldHKa9xHk
W8vh9aK199iTvL0OrFa3OG7jSCHav/jJtUX9RrtIS9mX/DrT298T21TkjV6zpL7r
OshE4pSHnRwVMPxBt2nBWtLc6EVy5oziABh4Jce/NIbSHJdObMX1B5dqZhwcGSRC
oHgOvFU4zBgZCIl3cvyMCw6NBcojtaXSGBRWAvh2B5WXRykcidqedfCN1VrjLicn
1yHX/k48K77ELwT02RLgvZUZSWxsVy5OKXJhgXOsGGho4tgSzfk6jpTYNGhaAZ/h
pQbfGdVOWfQiyJRWVbiY+dL0nX/Y35Mw3SOQ5z34fGmu6pq4f2g=
=dlmQ
-----END PGP SIGNATURE-----