articles

Node v4.4.2(LTS)

이번 릴리스는 npm 보안 업데이트를 포함하고 있습니다. 자세한 내용은 npm의 Forrest L Norvell이 쓴 우리 블로그의 글을 참고하세요.

업데이트:
이번 릴리스의 npm의 버전은 올바른 버전 문자열을 포함하지 않았습니다. 잘못되었지만, npm -v를 실행하면 2.15.1가 아닌 2.15.0를 보여줍니다. 보안 수정사항을 포함하고 있는 이번 릴리스 소스 코드는 정확히는 2.15.1 입니다.

주요 변경사항

  • https:
    • 특정 조건에서 keepalive가 활성화되면 ssl 소켓이 메모리 누수를 일으키고 있었습니다. 이제 더는 발생하지 않습니다. (Alexander Penev) #5713
  • lib:
    • 인수를 내부적으로 넘기는 방법은 잠재적 누수를 발생시켰습니다. 인수를 배열로 복사함으로써 이것을 회피합니다. (Nathan Woltman) #4361
  • npm:
    • 2.15.1 버전으로 업그레이드 합니다. 커맨드 라인 인터페이스 사용자의 토큰을 수집하는 서버 구성을 공격자에게 허용하는 HTTP 요청 인증 토큰 사용의 보안 결함을 수정합니다. 이전에는 인증 토큰이 목적지와 상관없이 로그인된 사용자의 CLI로 만들어진 모든 요청과 함께 전송되고 있었습니다. 이번 업데이트에서는 레지스트리의 사용을 막도록 만들어진 요청 토큰만 포함 함으로써 현재 설치의 문제점을 수정합니다. (Forrest L Norvell)
  • repl:
    • 이전에 제한 모드에서 repl의 사용은 stack trace의 column number 문제를 발생시켰습니다. 이제 더는 문제가 발생하지 않습니다. (Prince J Wesley) #5416

Commits

  • [96e163a79f] - buffer: changing let in for loops back to var (Gareth Ellis) #5819
  • [0c6f6742f2] - console: check that stderr is writable (Rich Trott) #5635
  • [55c3f804c4] - deps: upgrade npm in LTS to 2.15.1 (Forrest L Norvell)
  • [1d0e4a987d] - deps: remove unused openssl files (Ben Noordhuis) #5619
  • [d55599f4d8] - dns: use template literals (Benjamin Gruenbaum) #5809
  • [42bbdc9dd1] - doc Add @mhdawson back to the CTC (James M Snell) #5633
  • [8d86d232e7] - doc: typo: interal->internal. (Corey Kosak) #5849
  • [60ddab841e] - doc: add instructions to only sign a release (Jeremiah Senkpiel) #5876
  • [040263e0f3] - doc: grammar, clarity and links in timers doc (Bryan English) #5792
  • [8c24bd25a6] - doc: fix order of end tags of list after heading (firedfox) #5874
  • [7c837028da] - doc: use consistent event name parameter (Benjamin Gruenbaum) #5850
  • [20faf9097d] - doc: explain error message on missing main file (Wolfgang Steiner) #5812
  • [79d26ae196] - doc: explain path.format expected properties (John Eversole) #5801
  • [e43e8e3a31] - doc: add a cli options doc page (Jeremiah Senkpiel) #5787
  • [c0a24e4a1d] - doc: fix multiline return comments in querystring (Claudio Rodriguez) #5705
  • [bf1fe4693c] - doc: Add windows example for Path.format (Mithun Patel) #5700
  • [3b8fc4fddc] - doc: update crypto docs to use good defaults (Bill Automata) #5505
  • [a6ec8a6cb7] - doc: fix crypto update() signatures (Brian White) #5500
  • [eb0ed46665] - doc: reformat & improve node.1 manual page (Jeremiah Senkpiel) #5497
  • [b70ca4a4b4] - doc: updated fs #5862 removed irrelevant data in fs.markdown (topal) #5877
  • [81876612f7] - https: fix ssl socket leak when keepalive is used (Alexander Penev) #5713
  • [6daebdbd9b] - lib: simplify code with String.prototype.repeat() (Jackson Tian) #5359
  • [108fc90dd7] - lib: reduce usage of self = this (Jackson Tian) #5231
  • [3c8e59c396] - lib: copy arguments object instead of leaking it (Nathan Woltman) #4361
  • [8648420586] - net: make isIPv4 and isIPv6 more efficient (Vladimir Kurchatkin) #5478
  • [07b7172d76] - net: remove unused var self = this from old code (Benjamin Gruenbaum) #5224
  • [acbce4b72b] - repl: fix stack trace column number in strict mode (Prince J Wesley) #5416
  • [0a1eb168e0] - test: fix test-cluster-worker-kill (Santiago Gimeno) #5814
  • [86b876fe7b] - test: smaller chunk size for smaller person.jpg (Jérémy Lal) #5813
  • [1135ee97e7] - test: strip non-free icc profile from person.jpg (Jérémy Lal) #5813
  • [0836d7e2fb] - test: fix flaky test-cluster-shared-leak (Claudio Rodriguez) #5802
  • [e57355c2f4] - test: make test-net-connect-options-ipv6.js better (Michael Dawson) #5791
  • [1b266fc15c] - test: remove the use of curl in the test suite (Santiago Gimeno) #5750
  • [7e45d4f076] - test: minimize test-http-get-pipeline-problem (Rich Trott) #5728
  • [78effc3484] - test: add batch of known issue tests (cjihrig) #5653
  • [d506eea4b7] - test: improve test-npm-install (Santiago Gimeno) #5613
  • [7520100e8b] - test: add test-npm-install to parallel tests suite (Myles Borins) #5166
  • [b258dddb8c] - test: repl tab completion test (Santiago Gimeno) #5534
  • [f209effe8b] - test: remove timer from test-http-1.0 (Santiago Gimeno) #5129
  • [3a901b0e3e] - tools: remove unused imports (Sakthipriyan Vairamani) #5765

Windows 32-bit Installer: https://nodejs.org/dist/v4.4.2/node-v4.4.2-x86.msi

Windows 64-bit Installer: https://nodejs.org/dist/v4.4.2/node-v4.4.2-x64.msi

Windows 32-bit Binary: https://nodejs.org/dist/v4.4.2/win-x86/node.exe

Windows 64-bit Binary: https://nodejs.org/dist/v4.4.2/win-x64/node.exe

Mac OS X 64-bit Installer: https://nodejs.org/dist/v4.4.2/node-v4.4.2.pkg

Mac OS X 64-bit Binary: https://nodejs.org/dist/v4.4.2/node-v4.4.2-darwin-x64.tar.gz

Linux 32-bit Binary: https://nodejs.org/dist/v4.4.2/node-v4.4.2-linux-x86.tar.xz

Linux 64-bit Binary: https://nodejs.org/dist/v4.4.2/node-v4.4.2-linux-x64.tar.xz

Linux PPC LE 64-bit Binary: https://nodejs.org/dist/v4.4.2/node-v4.4.2-linux-ppc64le.tar.xz

SmartOS 32-bit Binary: https://nodejs.org/dist/v4.4.2/node-v4.4.2-sunos-x86.tar.xz

SmartOS 64-bit Binary: https://nodejs.org/dist/v4.4.2/node-v4.4.2-sunos-x64.tar.xz

ARMv6 32-bit Binary: https://nodejs.org/dist/v4.4.2/node-v4.4.2-linux-armv6l.tar.xz

ARMv7 32-bit Binary: https://nodejs.org/dist/v4.4.2/node-v4.4.2-linux-armv7l.tar.xz

ARMv8 64-bit Binary: https://nodejs.org/dist/v4.4.2/node-v4.4.2-linux-arm64.tar.xz

Source Code: https://nodejs.org/dist/v4.4.2/node-v4.4.2.tar.gz

Other release files: https://nodejs.org/dist/v4.4.2/

Documentation: https://nodejs.org/docs/v4.4.2/api/

Shasums (GPG signing hash: SHA512, file hash: SHA256):

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

a143d6c71c9f1d1827d4cde1086611fb41d4909247377b8539a7129e1bf8266b  node-v4.4.2-darwin-x64.tar.gz
2407261b3829b83b06ad285af1aaa5198b9c69f6efb93ca493ffb42344f219fe  node-v4.4.2-darwin-x64.tar.xz
6b2ec4064900a8c39357ca7bdd7863587d749dcad1e4735df0de402400142cbb  node-v4.4.2-headers.tar.gz
8dc001e4b78073c567eb4c345a5d50bb3d9f9dfe6a4b5f99ba4ca9cadd0a7e52  node-v4.4.2-headers.tar.xz
be881df65ff29ffbec47a14e082800c150d4a9238d1c137ff18cf7c28fafa987  node-v4.4.2-linux-arm64.tar.gz
a15d77d084b954c96d0fbb12e97afc988bfd1f9c0e386ad52e0805f6422db783  node-v4.4.2-linux-arm64.tar.xz
c574a381e5955c724bf39ff93814882e8f5218293b8c4210ccfafbda06fc4200  node-v4.4.2-linux-armv6l.tar.gz
d139f9ba6c18a55a9549b75d5b384ee4a7e7b379bf36e8077d33e27d5ee6e7fd  node-v4.4.2-linux-armv6l.tar.xz
f243f42bbab4757b3881a26e7ac3af4a1ec6d0f5edc1e4415e69768e94cd1389  node-v4.4.2-linux-armv7l.tar.gz
03bcb820c7f1fea145675a9b632e35b58211cb3dae202f9347eae007386ca1e7  node-v4.4.2-linux-armv7l.tar.xz
035d202d02ac965618d99ec5c8680aba1ea41f6114caf720a160fe23405809b5  node-v4.4.2-linux-ppc64le.tar.gz
cd6e96898fcc1b8e98177d6de3e58904431db5c9ca75a68b08558d5c8f166ab9  node-v4.4.2-linux-ppc64le.tar.xz
b4a44dbe528520397621aad76168bdfd50cdb96fb1f15e99358263f6400c33d2  node-v4.4.2-linux-x64.tar.gz
003a8dcb3c267b9f268e9443ee2ae381bceaebee1cb438688cd52122591c9b56  node-v4.4.2-linux-x64.tar.xz
0c2bdf6fed204c6b9bddd7f839f49010cf9b484986f820e20d4f7abb01d8ee9d  node-v4.4.2-linux-x86.tar.gz
3787dc1a9dd6f65a32f9cc435c6c7d04bc3580ac03ce38246734bfdcdef94ea9  node-v4.4.2-linux-x86.tar.xz
5d115f4d561f92c6b26f40e7d0217e99e4255e2051337bca15489c39597d05ba  node-v4.4.2.pkg
006ef87af910bb5b0d78d65d2b979125a6b1049d56dc26088c9cb9deb6a16986  node-v4.4.2-sunos-x64.tar.gz
c66c35ea9b3594475eac67b213bb87f3ac867a953b5202c70433bc318de1369d  node-v4.4.2-sunos-x64.tar.xz
13da507b8ecd88598080c63a63c77efc83e04c8454f4070389c4472d512ced48  node-v4.4.2-sunos-x86.tar.gz
6e9e382fca253b6032881cad42a7e7380f7efd7a169b4df56aba990613a6404f  node-v4.4.2-sunos-x86.tar.xz
ae91cb0a31f87b5b13bb2665178845d99abf1037dc3636fa88f442b4a4c65297  node-v4.4.2.tar.gz
49051fd930e36181509dc8fcf584fc01971083b6bf9e14f2bbec49cc9c4224e9  node-v4.4.2.tar.xz
70bab3f8412f341d8ed2f2fd98904270aba650262f947084dbc5b1e7e6d98692  node-v4.4.2-x64.msi
3f16ed3b83d893b8d594e252fbe2512806141d078afd66440afd63cd00f562f8  node-v4.4.2-x86.msi
133e73a2b7a231e78cfa5802ae301de64e9b1bcfbe7e46e49a930b6b6f08c222  win-x64/node.exe
c258cd572a3120e940671c4728041bc1e34fe1e2287e73c358dccb41f959191b  win-x64/node.lib
79f633a85f6c06b923b2283d7f6b8a869d4cf0f66ef95464c19e67d575d204bc  win-x86/node.exe
b2a4e0057b5bca1a5b089d1faa92f23718359442f1bd072dac2c9d7b0bd71199  win-x86/node.lib
-----BEGIN PGP SIGNATURE-----

iQEcBAEBAgAGBQJW/dEwAAoJEJM7AfQLXKlGMW8H/Aj8PhN/66SYqG3LH2UCffmh
rlsc9R265TU5m9WJA6AuXOa5cY5rIdWiucp9wzc5nX/y8imSmy7bCNui2Ar0McDN
VKIlzcUhsa4TG0b1LihF5NUbNDwpFjandbMVHMPoo4KPYYd5IbxEIDjGj6ysktRl
D7w/cUXihLTWm8Ucda1IKGBDt28e4zSSz1bYUBPcw0AKc9KJzTWth0ikqRWLNxXB
aSJWflrDatBvghtTOtXNrGmnlcn2dLDOD44a9gqTkFBdQg1CfHchFCHpG7+TIAHZ
kUMFGcEvH3tj27YFn7iyfUIlGUezwI+fuS52HN6BU3alO0JWCmQmGNr/Z6uL4Ew=
=+gcT
-----END PGP SIGNATURE-----