From 96e7b58361dffe192f27bc81b2894cc7ac2fe16a Mon Sep 17 00:00:00 2001 From: RafaelGSS Date: Tue, 13 Jan 2026 11:39:16 -0300 Subject: [PATCH 1/5] Blog: fix formatting on sec release changelog --- apps/site/pages/en/blog/release/v20.20.0.md | 6 ------ apps/site/pages/en/blog/release/v22.22.0.md | 6 ------ apps/site/pages/en/blog/release/v24.13.0.md | 6 ------ apps/site/pages/en/blog/release/v25.3.0.md | 6 ------ .../blog/vulnerability/december-2025-security-releases.md | 8 ++++---- 5 files changed, 4 insertions(+), 28 deletions(-) diff --git a/apps/site/pages/en/blog/release/v20.20.0.md b/apps/site/pages/en/blog/release/v20.20.0.md index 771e28a3d9dd5..4c1018c1ec2c7 100644 --- a/apps/site/pages/en/blog/release/v20.20.0.md +++ b/apps/site/pages/en/blog/release/v20.20.0.md @@ -12,17 +12,11 @@ This is a security release. ### Notable Changes -lib: - - (CVE-2025-55132) disable futimes when permission model is enabled (RafaelGSS) - (CVE-2025-59465) add TLSSocket default error handler (RafaelGSS) - lib,permission: - (CVE-2025-55130) require full read and write to symlink APIs (RafaelGSS) - src: - (CVE-2025-59466) rethrow stack overflow exceptions in async_hooks (Matteo Collina) - src,lib: - (CVE-2025-55131) refactor unsafe buffer creation to remove zero-fill toggle (Сковорода Никита Андреевич) - tls: - (CVE-2026-21637) route callback exceptions through error handlers (Matteo Collina) ### Commits diff --git a/apps/site/pages/en/blog/release/v22.22.0.md b/apps/site/pages/en/blog/release/v22.22.0.md index 38ccb3147d9d9..eb597d26280cb 100644 --- a/apps/site/pages/en/blog/release/v22.22.0.md +++ b/apps/site/pages/en/blog/release/v22.22.0.md @@ -12,17 +12,11 @@ This is a security release. ### Notable Changes -lib: - - (CVE-2025-59465) add TLSSocket default error handler - (CVE-2025-55132) disable futimes when permission model is enabled - lib,permission: - (CVE-2025-55130) require full read and write to symlink APIs - src: - (CVE-2025-59466) rethrow stack overflow exceptions in async_hooks - src,lib: - (CVE-2025-55131) refactor unsafe buffer creation to remove zero-fill toggle - tls: - (CVE-2026-21637) route callback exceptions through error handlers ### Commits diff --git a/apps/site/pages/en/blog/release/v24.13.0.md b/apps/site/pages/en/blog/release/v24.13.0.md index 40b82b3d44b3a..3012fba1ff700 100644 --- a/apps/site/pages/en/blog/release/v24.13.0.md +++ b/apps/site/pages/en/blog/release/v24.13.0.md @@ -12,17 +12,11 @@ This is a security release. ### Notable Changes -lib: - - (CVE-2025-59465) add TLSSocket default error handler (RafaelGSS) - (CVE-2025-55132) disable futimes when permission model is enabled (RafaelGSS) - lib,permission: - (CVE-2025-55130) require full read and write to symlink APIs (RafaelGSS) - src: - (CVE-2025-59466) rethrow stack overflow exceptions in async_hooks (Matteo Collina) - src,lib: - (CVE-2025-55131) refactor unsafe buffer creation to remove zero-fill toggle (Сковорода Никита Андреевич) - tls: - (CVE-2026-21637) route callback exceptions through error handlers (Matteo Collina) ### Commits diff --git a/apps/site/pages/en/blog/release/v25.3.0.md b/apps/site/pages/en/blog/release/v25.3.0.md index 3930dfb535fed..9b69ef1158dc4 100644 --- a/apps/site/pages/en/blog/release/v25.3.0.md +++ b/apps/site/pages/en/blog/release/v25.3.0.md @@ -12,18 +12,12 @@ This is a security release. ### Notable Changes -lib: - - (CVE-2025-59465) add TLSSocket default error handler (RafaelGSS) - permission: - (CVE-2026-21636) add network check on pipe_wrap connect (RafaelGSS) - (CVE-2025-55130) require full read and write to symlink APIs (RafaelGSS) - (CVE-2025-55132) disable futimes when permission model is enabled (RafaelGSS) - src: - (CVE-2025-59466) rethrow stack overflow exceptions in async_hooks (Matteo Collina) - src,lib: - (CVE-2025-55131) refactor unsafe buffer creation to remove zero-fill toggle (Сковорода Никита Андреевич) - tls: - (CVE-2026-21637) route callback exceptions through error handlers (Matteo Collina) ### Commits diff --git a/apps/site/pages/en/blog/vulnerability/december-2025-security-releases.md b/apps/site/pages/en/blog/vulnerability/december-2025-security-releases.md index 31cfa2d66f7ba..04a7aa9c07a58 100644 --- a/apps/site/pages/en/blog/vulnerability/december-2025-security-releases.md +++ b/apps/site/pages/en/blog/vulnerability/december-2025-security-releases.md @@ -147,10 +147,10 @@ Thank you, to oriotie for reporting this vulnerability and thank you RafaelGSS f ## Downloads and release details -- [Node.js v20.19.7](/blog/release/v20.19.7/) -- [Node.js v22.21.2](/blog/release/v22.21.2/) -- [Node.js v24.12.1](/blog/release/v24.12.1/) -- [Node.js v25.2.2](/blog/release/v25.2.2/) +- [Node.js 20.19.7](/blog/release/v20.19.7/) +- [Node.js 22.21.2](/blog/release/v22.21.2/) +- [Node.js 24.12.1](/blog/release/v24.12.1/) +- [Node.js 25.2.2](/blog/release/v25.2.2/) # Summary From 59c4427ec321cf32fb3e2f4739b78156d8726f2d Mon Sep 17 00:00:00 2001 From: Aviv Keller Date: Tue, 13 Jan 2026 09:40:40 -0500 Subject: [PATCH 2/5] fix version name Signed-off-by: Aviv Keller --- .../en/blog/vulnerability/december-2025-security-releases.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/apps/site/pages/en/blog/vulnerability/december-2025-security-releases.md b/apps/site/pages/en/blog/vulnerability/december-2025-security-releases.md index 04a7aa9c07a58..e8823b65c1da1 100644 --- a/apps/site/pages/en/blog/vulnerability/december-2025-security-releases.md +++ b/apps/site/pages/en/blog/vulnerability/december-2025-security-releases.md @@ -148,7 +148,7 @@ Thank you, to oriotie for reporting this vulnerability and thank you RafaelGSS f ## Downloads and release details - [Node.js 20.19.7](/blog/release/v20.19.7/) -- [Node.js 22.21.2](/blog/release/v22.21.2/) +- [Node.js 22.22.0](/blog/release/v22.22.0/) - [Node.js 24.12.1](/blog/release/v24.12.1/) - [Node.js 25.2.2](/blog/release/v25.2.2/) From 2da1d4506e05d038142a5577a2fa53d65cfc9f03 Mon Sep 17 00:00:00 2001 From: Aviv Keller Date: Tue, 13 Jan 2026 09:41:00 -0500 Subject: [PATCH 3/5] Apply suggestion from @marco-ippolito Co-authored-by: Marco Ippolito Signed-off-by: Aviv Keller --- .../en/blog/vulnerability/december-2025-security-releases.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/apps/site/pages/en/blog/vulnerability/december-2025-security-releases.md b/apps/site/pages/en/blog/vulnerability/december-2025-security-releases.md index e8823b65c1da1..9a72bfa5f6403 100644 --- a/apps/site/pages/en/blog/vulnerability/december-2025-security-releases.md +++ b/apps/site/pages/en/blog/vulnerability/december-2025-security-releases.md @@ -147,7 +147,7 @@ Thank you, to oriotie for reporting this vulnerability and thank you RafaelGSS f ## Downloads and release details -- [Node.js 20.19.7](/blog/release/v20.19.7/) +- [Node.js 20.20.0](/blog/release/v20.20.0/) - [Node.js 22.22.0](/blog/release/v22.22.0/) - [Node.js 24.12.1](/blog/release/v24.12.1/) - [Node.js 25.2.2](/blog/release/v25.2.2/) From 57a4aced11b11f9ecaac2d3a15a039ee4ced623a Mon Sep 17 00:00:00 2001 From: Aviv Keller Date: Tue, 13 Jan 2026 09:41:23 -0500 Subject: [PATCH 4/5] Update apps/site/pages/en/blog/vulnerability/december-2025-security-releases.md Co-authored-by: Marco Ippolito Signed-off-by: Aviv Keller --- .../en/blog/vulnerability/december-2025-security-releases.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/apps/site/pages/en/blog/vulnerability/december-2025-security-releases.md b/apps/site/pages/en/blog/vulnerability/december-2025-security-releases.md index 9a72bfa5f6403..04a6bed082488 100644 --- a/apps/site/pages/en/blog/vulnerability/december-2025-security-releases.md +++ b/apps/site/pages/en/blog/vulnerability/december-2025-security-releases.md @@ -150,7 +150,7 @@ Thank you, to oriotie for reporting this vulnerability and thank you RafaelGSS f - [Node.js 20.20.0](/blog/release/v20.20.0/) - [Node.js 22.22.0](/blog/release/v22.22.0/) - [Node.js 24.12.1](/blog/release/v24.12.1/) -- [Node.js 25.2.2](/blog/release/v25.2.2/) +- [Node.js 25.3.0](/blog/release/v25.3.0/) # Summary From 6f6c14be3bb0d902b44054dd706cfd48b7db805d Mon Sep 17 00:00:00 2001 From: Aviv Keller Date: Tue, 13 Jan 2026 09:41:36 -0500 Subject: [PATCH 5/5] Update apps/site/pages/en/blog/vulnerability/december-2025-security-releases.md Co-authored-by: Marco Ippolito Signed-off-by: Aviv Keller --- .../en/blog/vulnerability/december-2025-security-releases.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/apps/site/pages/en/blog/vulnerability/december-2025-security-releases.md b/apps/site/pages/en/blog/vulnerability/december-2025-security-releases.md index 04a6bed082488..5179751845546 100644 --- a/apps/site/pages/en/blog/vulnerability/december-2025-security-releases.md +++ b/apps/site/pages/en/blog/vulnerability/december-2025-security-releases.md @@ -149,7 +149,7 @@ Thank you, to oriotie for reporting this vulnerability and thank you RafaelGSS f - [Node.js 20.20.0](/blog/release/v20.20.0/) - [Node.js 22.22.0](/blog/release/v22.22.0/) -- [Node.js 24.12.1](/blog/release/v24.12.1/) +- [Node.js 24.13.0](/blog/release/v24.13.0/) - [Node.js 25.3.0](/blog/release/v25.3.0/) # Summary