2017-12-08 Version 9.2.1 (Current)v9.2.1-proposal

Notable changes: * **buffer**: * buffer allocated with an invalid content will now be zero filled (Anna Henningsen) https://github.com/nodejs/node/pull/17428 * **deps**: * openssl updated to 1.0.2n (Shigeki Ohtsu) https://github.com/nodejs/node/pull/17526 PR-URL: https://github.com/nodejs/node/pull/17531
author: Evan Lucas <evanlucas@me.com> 2017-12-07 14:45:09 -0600
committer: Evan Lucas <evanlucas@me.com> 2017-12-08 05:22:08 -0600
commit: e5047e76a4ec2a0c00ebfe7b33e95bdcca006c0f (patch)
tree: 033ffe1280e563113768c8f5750d509bccca707a
parent: 84620d8e5e7027d9c8a34c6ecec5202e8c3d429e (diff)
download: node-new-v9.2.1-proposal.tar.gz
5 files changed, 43 insertions, 7 deletions
diff --git a/CHANGELOG.md b/CHANGELOG.md
index d44d7e3869..a1801a86ae 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -29,7 +29,8 @@ release.
 </tr>
 <tr>
     <td valign="top">
-<b><a href="doc/changelogs/CHANGELOG_V9.md#9.2.0">9.2.0</a></b><br/>
+<b><a href="doc/changelogs/CHANGELOG_V9.md#9.2.1">9.2.1</a></b><br/>
+<a href="doc/changelogs/CHANGELOG_V9.md#9.2.0">9.2.0</a><br/>
 <a href="doc/changelogs/CHANGELOG_V9.md#9.1.0">9.1.0</a><br/>
 <a href="doc/changelogs/CHANGELOG_V9.md#9.0.0">9.0.0</a><br/>
     </td>
diff --git a/doc/api/buffer.md b/doc/api/buffer.md
index c9f975770b..9b0f36f2da 100644
--- a/doc/api/buffer.md
+++ b/doc/api/buffer.md
@@ -511,7 +511,7 @@ console.log(buf2.toString());
 <!-- YAML
 added: v5.10.0
 changes:
-  - version: REPLACEME
+  - version: v9.2.1
     pr-url: https://github.com/nodejs/node/pull/17428
     description: Specifying an invalid string for `fill` now results in a
                  zero-filled buffer.
diff --git a/doc/api/http2.md b/doc/api/http2.md
index 984022aa3e..231173bede 100644
--- a/doc/api/http2.md
+++ b/doc/api/http2.md
@@ -344,7 +344,7 @@ frames have been acknowledged.
 
 #### http2session.ping([payload, ]callback)
 <!-- YAML
-added: REPLACEME
+added: v9.2.1
 -->
 
 * `payload` {Buffer|TypedArray|DataView} Optional ping payload.
@@ -1473,7 +1473,7 @@ not be emitted.
 <!-- YAML
 added: v8.4.0
 changes:
-  - version: REPLACEME
+  - version: v9.2.1
     pr-url: https://github.com/nodejs/node/pull/17105
     description: Added the `maxOutstandingPings` option with a default limit of
                  10.
@@ -1541,7 +1541,7 @@ server.listen(80);
 <!-- YAML
 added: v8.4.0
 changes:
-  - version: REPLACEME
+  - version: v9.2.1
     pr-url: https://github.com/nodejs/node/pull/17105
     description: Added the `maxOutstandingPings` option with a default limit of
                  10.
@@ -1619,7 +1619,7 @@ server.listen(80);
 <!-- YAML
 added: v8.4.0
 changes:
-  - version: REPLACEME
+  - version: v9.2.1
     pr-url: https://github.com/nodejs/node/pull/17105
     description: Added the `maxOutstandingPings` option with a default limit of
                  10.
diff --git a/doc/changelogs/CHANGELOG_V9.md b/doc/changelogs/CHANGELOG_V9.md
index ffe6c1d33c..dd78125aa7 100644
--- a/doc/changelogs/CHANGELOG_V9.md
+++ b/doc/changelogs/CHANGELOG_V9.md
@@ -6,6 +6,7 @@
 </tr>
 <tr>
 <td>
+<a href="#9.2.1">9.2.1</a><br/>
 <a href="#9.2.0">9.2.0</a><br/>
 <a href="#9.1.0">9.1.0</a><br/>
 <a href="#9.0.0">9.0.0</a><br/>
@@ -24,6 +25,40 @@
   * [io.js](CHANGELOG_IOJS.md)
   * [Archive](CHANGELOG_ARCHIVE.md)
 
+<a id="9.2.1"></a>
+## 2017-12-08, Version 9.2.1 (Current), @evanlucas
+
+This is a security release. All Node.js users should consult the security release summary at https://nodejs.org/en/blog/vulnerability/december-2017-security-releases/ for details on patched vulnerabilities.
+
+Fixes for the following CVEs are included in this release:
+
+* CVE-2017-15896
+* CVE-2017-15897
+* CVE-2017-3738 (from the openssl project)
+
+### Notable Changes
+
+* **buffer**:
+  * buffer allocated with an invalid content will now be zero filled (Anna Henningsen) [#17428](https://github.com/nodejs/node/pull/17428)
+* **deps**:
+  * openssl updated to 1.0.2n (Shigeki Ohtsu) [#17526](https://github.com/nodejs/node/pull/17526)
+
+### Commits
+
+* [[`15bf640668`](https://github.com/nodejs/node/commit/15bf640668)] - **buffer**: zero-fill buffer allocated with invalid content (Anna Henningsen) [#17428](https://github.com/nodejs/node/pull/17428)
+* [[`c0954f4ba1`](https://github.com/nodejs/node/commit/c0954f4ba1)] - **deps**: update openssl asm and asm_obsolete files (Shigeki Ohtsu) [#17526](https://github.com/nodejs/node/pull/17526)
+* [[`dfd7cd3038`](https://github.com/nodejs/node/commit/dfd7cd3038)] - **deps**: add -no_rand_screen to openssl s_client (Shigeki Ohtsu) [nodejs/io.js#1836](https://github.com/nodejs/io.js/pull/1836)
+* [[`76e7ff2915`](https://github.com/nodejs/node/commit/76e7ff2915)] - **deps**: fix asm build error of openssl in x86_win32 (Shigeki Ohtsu) [iojs/io.js#1389](https://github.com/iojs/io.js/pull/1389)
+* [[`593f21ee9c`](https://github.com/nodejs/node/commit/593f21ee9c)] - **deps**: fix openssl assembly error on ia32 win32 (Fedor Indutny) [iojs/io.js#1389](https://github.com/iojs/io.js/pull/1389)
+* [[`235c78f968`](https://github.com/nodejs/node/commit/235c78f968)] - **deps**: copy all openssl header files to include dir (Shigeki Ohtsu) [#17526](https://github.com/nodejs/node/pull/17526)
+* [[`b0ebe5cb4b`](https://github.com/nodejs/node/commit/b0ebe5cb4b)] - **deps**: upgrade openssl sources to 1.0.2n (Shigeki Ohtsu) [#17526](https://github.com/nodejs/node/pull/17526)
+* [[`99fc75e9bc`](https://github.com/nodejs/node/commit/99fc75e9bc)] - **doc**: warn against filling buffer with invalid data (Anna Henningsen) [#17428](https://github.com/nodejs/node/pull/17428)
+* [[`84620d8e5e`](https://github.com/nodejs/node/commit/84620d8e5e)] - **http2**: use 'close' event instead of 'streamClosed' (James M Snell) [#17328](https://github.com/nodejs/node/pull/17328)
+* [[`8442b53a20`](https://github.com/nodejs/node/commit/8442b53a20)] - **http2**: general cleanups in core.js (James M Snell) [#17209](https://github.com/nodejs/node/pull/17209)
+* [[`70a46903bc`](https://github.com/nodejs/node/commit/70a46903bc)] - **http2**: major update to internals (James M Snell) [#17105](https://github.com/nodejs/node/pull/17105)
+* [[`71cf21a846`](https://github.com/nodejs/node/commit/71cf21a846)] - **http2**: use correct connect event for TLS Socket (James M Snell) [#17328](https://github.com/nodejs/node/pull/17328)
+* [[`e14c0babe0`](https://github.com/nodejs/node/commit/e14c0babe0)] - **openssl**: fix keypress requirement in apps on win32 (Shigeki Ohtsu) [iojs/io.js#1389](https://github.com/iojs/io.js/pull/1389)
+
 <a id="9.2.0"></a>
 ## 2017-11-14, Version 9.2.0 (Current), @evanlucas
 
diff --git a/src/node_version.h b/src/node_version.h
index b8917b7629..a17b9eab7c 100644
--- a/src/node_version.h
+++ b/src/node_version.h
@@ -26,7 +26,7 @@
 #define NODE_MINOR_VERSION 2
 #define NODE_PATCH_VERSION 1
 
-#define NODE_VERSION_IS_RELEASE 0
+#define NODE_VERSION_IS_RELEASE 1
 
 #ifndef NODE_STRINGIFY
 #define NODE_STRINGIFY(n) NODE_STRINGIFY_HELPER(n)
author	Evan Lucas <evanlucas@me.com>	2017-12-07 14:45:09 -0600
committer	Evan Lucas <evanlucas@me.com>	2017-12-08 05:22:08 -0600
commit	e5047e76a4ec2a0c00ebfe7b33e95bdcca006c0f (patch)
tree	033ffe1280e563113768c8f5750d509bccca707a
parent	84620d8e5e7027d9c8a34c6ecec5202e8c3d429e (diff)
download	node-new-v9.2.1-proposal.tar.gz