Skip to content

Commit 862c078

Browse files
RafaelGSSRafaelGSS
authored
Blog: pre release announcement May security releases (#7731)
1 parent 866bb55 commit 862c078

File tree

2 files changed

+43
-4
lines changed

2 files changed

+43
-4
lines changed

apps/site/pages/en/blog/vulnerability/may-2025-security-releases.md

Lines changed: 39 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,39 @@
1+
---
2+
date: 2025-05-08T03:00:00.000Z
3+
category: vulnerability
4+
title: Wednesday, May 14, 2025 Security Releases
5+
slug: may-2025-security-releases
6+
layout: blog-post
7+
author: The Node.js Project
8+
---
9+
10+
# Summary
11+
12+
The Node.js project will release new versions of the 24.x, 23.x, 22.x, 20.x
13+
releases lines on or shortly after, Wednesday, May 14, 2025 in order to address:
14+
15+
- 1 low severity issues.
16+
- 1 high severity issues.
17+
- 1 medium severity issues.
18+
19+
## Impact
20+
21+
The 24.x release line of Node.js is vulnerable to 1 high severity issues.
22+
The 23.x release line of Node.js is vulnerable to 1 high severity issues.
23+
The 22.x release line of Node.js is vulnerable to 1 low severity issues, 1 high severity issues.
24+
The 20.x release line of Node.js is vulnerable to 1 low severity issues, 1 high severity issues, 1 medium severity issues.
25+
26+
It's important to note that End-of-Life versions are always affected when a security release occurs.
27+
To ensure your system's security, please use an up-to-date version as outlined in our
28+
[Release Schedule](https://github.com/nodejs/release#release-schedule).
29+
30+
## Release timing
31+
32+
Releases will be available on, or shortly after, Wednesday, May 14, 2025.
33+
34+
## Contact and future updates
35+
36+
The current Node.js security policy can be found at <https://nodejs.org/en/security/>.
37+
Please follow the process outlined in <https://github.com/nodejs/node/blob/master/SECURITY.md> if you wish to report a vulnerability in Node.js.
38+
39+
Subscribe to the low-volume announcement-only nodejs-sec mailing list at <https://groups.google.com/forum/#!forum/nodejs-sec> to stay up to date on security vulnerabilities and security-related releases of Node.js and the projects maintained in the nodejs GitHub organization.

apps/site/site.json

Lines changed: 4 additions & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -28,10 +28,10 @@
2828
],
2929
"websiteBanners": {
3030
"index": {
31-
"startDate": "2025-04-01T00:00:00.000Z",
32-
"endDate": "2025-06-01T00:00:00.000Z",
33-
"text": "Node.js v18 has reached End-Of-Life on April 30, 2025.",
34-
"link": "https://nodejs.org/en/about/previous-releases#release-schedule",
31+
"startDate": "2025-05-08T03:00:00.000Z",
32+
"endDate": "2025-05-15T03:00:00.000Z",
33+
"text": "New security releases to be made available Wednesday, May 14, 2025",
34+
"link": "https://nodejs.org/en/blog/vulnerability/may-2025-security-releases",
3535
"type": "warning"
3636
}
3737
},

0 commit comments

Comments
 (0)