Upgrade the version of node shipped with the build #4387

megastef · 2015-07-04T09:18:05Z

Please stop distributing node.js v0.10 - and move to latest io.js or at least node 0.12.6 to make latest security patches available.

For example this one: https://medium.com/@iojs/important-security-upgrades-for-node-js-and-io-js-8ac14ece5852

I upgraded succesfully our Kibana 4.1.1 installation to io 2.3.3 on Linux 64 by following steps:

npm n -g 
n io 2.3.3
cd kibana/src
mv node_modules node_modules_old_0_10
npm i

then change bin/kibana start script

NODE=/usr/local/bin/node

The text was updated successfully, but these errors were encountered:

simianhacker · 2015-07-04T22:00:17Z

Node v0.10 wasn't affected by the security issue; the plan is for the next release to be based on io.js. @spalger is working on this as we speak, it will be part of the server refactor.

See https://twitter.com/nodejs/status/617131694617853952

w33ble · 2015-07-07T00:50:38Z

Updated the title and assigned to @spalger since he's already working on this

w33ble changed the title ~~Support latest io.js or at least node 0.12.6 in releases for security reasons~~ Upgrade the version of node shipped with the build Jul 7, 2015

w33ble assigned spalger Jul 7, 2015

w33ble added release_note:enhancement v4.2.0 labels Jul 7, 2015

spalger mentioned this issue Jul 7, 2015

Apps/App Switcher #4335

Merged

rashidkpc added the PR sent label Jul 15, 2015

spalger closed this as completed in #4335 Jul 30, 2015

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Upgrade the version of node shipped with the build #4387

Upgrade the version of node shipped with the build #4387

megastef commented Jul 4, 2015

simianhacker commented Jul 4, 2015

w33ble commented Jul 7, 2015

Upgrade the version of node shipped with the build #4387

Upgrade the version of node shipped with the build #4387

Comments

megastef commented Jul 4, 2015

simianhacker commented Jul 4, 2015

w33ble commented Jul 7, 2015