Node.js Security Releases: Addressing OpenSSL Vulnerabilities

The Node.js project will release new versions of the 16.x, 18.x, and 20.x releases lines on or shortly after Tuesday, August 8th, 2023 to address OpenSSL security updates. The 20.x release line is vulnerable to 3 high severity issues, 2 medium severity issues, and 2 low severity issues. The 18.x release line is vulnerable to 1 high severity issue and 2 medium severity issues. The 16.x release line is vulnerable to 1 high severity issue and 2 medium severity issues. Developers are advised to update their Node.js installations to the latest versions to mitigate these vulnerabilities. More information about the Node.js security policy can be found at https://nodejs.org/en/security/. To stay updated on security vulnerabilities and releases, developers can subscribe to the nodejs-sec mailing list at https://groups.google.com/forum/#!forum/nodejs-sec.