diff --git a/CHANGELOG.md b/CHANGELOG.md index 0a6e9096a32..fa5366628e2 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -46,7 +46,8 @@ release. 17.0.0
-16.14.1
+16.14.2
+16.14.1
16.14.0
16.13.2
16.13.1
diff --git a/doc/changelogs/CHANGELOG_V16.md b/doc/changelogs/CHANGELOG_V16.md index 6893c95fec6..2dd7c599699 100644 --- a/doc/changelogs/CHANGELOG_V16.md +++ b/doc/changelogs/CHANGELOG_V16.md @@ -9,6 +9,7 @@ +16.14.2
16.14.1
16.14.0
16.13.2
@@ -58,6 +59,25 @@ * [io.js](CHANGELOG_IOJS.md) * [Archive](CHANGELOG_ARCHIVE.md) + + +## 2022-03-17, Version 16.14.2 'Gallium' (LTS), @richardlau + +This is a security release. + +### Notable Changes + +Update to OpenSSL 1.1.1n, which addresses the following vulnerability: + +* Infinite loop in `BN_mod_sqrt()` reachable when parsing certificates (High)(CVE-2022-0778) + More details are available at + +### Commits + +* \[[`3924618c74`](https://github.com/nodejs/node/commit/3924618c74)] - **deps**: update archs files for OpenSSL-1.1.1 (Hassaan Pasha) [#42352](https://github.com/nodejs/node/pull/42352) +* \[[`7a6a870d58`](https://github.com/nodejs/node/commit/7a6a870d58)] - **deps**: upgrade openssl sources to OpenSSL\_1\_1\_1n (Hassaan Pasha) [#42352](https://github.com/nodejs/node/pull/42352) +* \[[`c533b430f4`](https://github.com/nodejs/node/commit/c533b430f4)] - **test**: fix tests affected by OpenSSL update (Michael Dawson) [#42352](https://github.com/nodejs/node/pull/42352) + ## 2022-03-15, Version 16.14.1 'Gallium' (LTS), @danielleadams