Closed
Bug 928590
Opened 11 years ago
Closed 11 years ago
Update node version on prod? - critical security fix for http shipped to nodejs stable
Categories
(Webmaker Graveyard :: DevOps, defect)
Tracking
(Not tracked)
RESOLVED
FIXED
People
(Reporter: cade, Assigned: johns)
Details
(Whiteboard: mozfest)
http://blog.nodejs.org/2013/10/18/node-v0-10-21-stable/ includes a security fix for http We should update ASAP, they will release details about the vulnerability soon.
Updated•11 years ago
|
Assignee: nobody → johns
Whiteboard: mozfest
Assignee | ||
Comment 1•11 years ago
|
||
Chris Lea's ubuntu repos aren't updated yet: http://www.ubuntuupdates.org/ppa/chris_lea_nodejs?dist=precise I'd bet tomorrow we get an update there, and I'll throw 0.10.21 on staging everywhere for everything.
Assignee | ||
Comment 2•11 years ago
|
||
I see chris lea added to his repo yesterday, hooray! jbuck, r+ https://github.com/mozilla/mofo_system_configurations/pull/198 I'm testing this now with butter.
Comment 3•11 years ago
|
||
r+
Assignee | ||
Comment 4•11 years ago
|
||
All webmaker nodes have been updated to 0.10.21: localmac-13:17:06-~# fab -P -R webmakerall-production -- sudo aptitude show nodejs|grep -i version [ec2-54-234-114-217.compute-1.amazonaws.com] out: Version: 0.10.21-1chl1~precise1 [ec2-54-226-56-16.compute-1.amazonaws.com] out: Version: 0.10.21-1chl1~precise1 [ec2-107-21-74-133.compute-1.amazonaws.com] out: Version: 0.10.21-1chl1~precise1 [ec2-23-20-76-72.compute-1.amazonaws.com] out: Version: 0.10.21-1chl1~precise1 [ec2-54-227-77-249.compute-1.amazonaws.com] out: Version: 0.10.21-1chl1~precise1 [ec2-54-234-89-203.compute-1.amazonaws.com] out: Version: 0.10.21-1chl1~precise1 [ec2-54-226-12-192.compute-1.amazonaws.com] out: Version: 0.10.21-1chl1~precise1 [ec2-54-224-67-99.compute-1.amazonaws.com] out: Version: 0.10.21-1chl1~precise1 [ec2-54-225-13-132.compute-1.amazonaws.com] out: Version: 0.10.21-1chl1~precise1 [ec2-54-227-149-111.compute-1.amazonaws.com] out: Version: 0.10.21-1chl1~precise1 [ec2-107-21-181-45.compute-1.amazonaws.com] out: Version: 0.10.21-1chl1~precise1 [ec2-107-20-78-127.compute-1.amazonaws.com] out: Version: 0.10.21-1chl1~precise1 [ec2-54-224-31-139.compute-1.amazonaws.com] out: Version: 0.10.21-1chl1~precise1 [ec2-67-202-2-64.compute-1.amazonaws.com] out: Version: 0.10.21-1chl1~precise1 [ec2-54-224-113-117.compute-1.amazonaws.com] out: Version: 0.10.10-1chl1~precise1 [ec2-50-19-51-156.compute-1.amazonaws.com] out: Version: 0.10.10-1chl1~precise1 [ec2-54-226-12-177.compute-1.amazonaws.com] out: Version: 0.10.10-1chl1~precise1 [ec2-72-44-45-139.compute-1.amazonaws.com] out: Version: 0.10.10-1chl1~precise1 [ec2-54-226-154-207.compute-1.amazonaws.com] out: Version: 0.10.10-1chl1~precise1 [ec2-54-227-52-192.compute-1.amazonaws.com] out: Version: 0.10.10-1chl1~precise1 [ec2-23-22-195-39.compute-1.amazonaws.com] out: Version: 0.10.10-1chl1~precise1 [ec2-54-211-160-153.compute-1.amazonaws.com] out: Version: 0.10.21-1chl1~precise1 [ec2-54-211-218-46.compute-1.amazonaws.com] out: Version: 0.10.21-1chl1~precise1 [ec2-107-22-52-124.compute-1.amazonaws.com] out: Version: 0.10.21-1chl1~precise1 [ec2-54-211-20-9.compute-1.amazonaws.com] out: Version: 0.10.10-1chl1~precise1 [ec2-54-234-133-97.compute-1.amazonaws.com] out: Version: 0.10.21-1chl1~precise1 [ec2-23-20-181-18.compute-1.amazonaws.com] out: Version: 0.10.21-1chl1~precise1 [ec2-23-23-60-142.compute-1.amazonaws.com] out: Version: 0.10.10-1chl1~precise1 [ec2-23-21-17-19.compute-1.amazonaws.com] out: Version: 0.10.21-1chl1~precise1 [ec2-107-20-26-122.compute-1.amazonaws.com] out: Version: 0.10.21-1chl1~precise1 [ec2-54-205-96-227.compute-1.amazonaws.com] out: Version: 0.10.21-1chl1~precise1 [ec2-54-237-96-244.compute-1.amazonaws.com] out: Version: 0.10.21-1chl1~precise1 [ec2-54-227-141-148.compute-1.amazonaws.com] out: Version: 0.10.21-1chl1~precise1 [ec2-184-73-42-255.compute-1.amazonaws.com] out: Version: 0.10.21-1chl1~precise1 I'm now finishing up on openbadges nodes going to 0.8.26.
Comment 5•11 years ago
|
||
Alright, thanks JP!
Status: NEW → RESOLVED
Closed: 11 years ago
Resolution: --- → FIXED
Assignee | ||
Comment 6•11 years ago
|
||
Reopening, more work to do sir. Openbadges backpack ready: [ec2-54-234-221-53.compute-1.amazonaws.com] out: Version: 0.8.26-1chl1~precise1 [ec2-23-22-14-77.compute-1.amazonaws.com] out: Version: 0.8.26-1chl1~precise1 [ec2-50-19-200-214.compute-1.amazonaws.com] out: Version: 0.8.26-1chl1~precise1 [ec2-107-21-174-200.compute-1.amazonaws.com] out: Version: 0.8.26-1chl1~precise1 [ec2-23-22-221-58.compute-1.amazonaws.com] out: Version: 0.8.26-1chl1~precise1 [ec2-23-22-185-34.compute-1.amazonaws.com] out: Version: 0.8.26-1chl1~precise1 [ec2-54-235-57-83.compute-1.amazonaws.com] out: Version: 0.8.26-1chl1~precise1 [ec2-54-226-111-26.compute-1.amazonaws.com] out: Version: 0.8.26-1chl1~precise1 [ec2-23-23-23-208.compute-1.amazonaws.com] out: Version: 0.8.26-1chl1~precise1
Status: RESOLVED → REOPENED
Resolution: FIXED → ---
Assignee | ||
Comment 7•11 years ago
|
||
Alright, openbadger nodes updated: Aborting. [ec2-54-242-122-108.compute-1.amazonaws.com] out: Version: 0.8.26-1chl1~precise1 [ec2-54-227-20-100.compute-1.amazonaws.com] out: Version: 0.8.26-1chl1~precise1 [ec2-54-234-188-251.compute-1.amazonaws.com] out: Version: 0.8.26-1chl1~precise1 [ec2-67-202-28-190.compute-1.amazonaws.com] out: Version: 0.8.26-1chl1~precise1 [ec2-54-211-26-68.compute-1.amazonaws.com] out: Version: 0.8.26-1chl1~precise1 [ec2-107-20-24-197.compute-1.amazonaws.com] out: Version: 0.8.26-1chl1~precise1 [ec2-54-235-51-119.compute-1.amazonaws.com] out: Version: 0.8.26-1chl1~precise1
Assignee | ||
Comment 8•11 years ago
|
||
Aestimia is all updated as well now. [ec2-107-22-63-20.compute-1.amazonaws.com] out: Version: 0.8.26-1chl1~precise1 [ec2-184-72-196-232.compute-1.amazonaws.com] out: Version: 0.8.26-1chl1~precise1 [ec2-23-21-14-183.compute-1.amazonaws.com] out: Version: 0.8.26-1chl1~precise1 [ec2-54-227-35-198.compute-1.amazonaws.com] out: Version: 0.8.26-1chl1~precise1 [ec2-54-211-32-229.compute-1.amazonaws.com] out: Version: 0.8.26-1chl1~precise1 [ec2-54-227-19-167.compute-1.amazonaws.com] out: Version: 0.8.26-1chl1~precise1
Assignee | ||
Comment 9•11 years ago
|
||
CSOL now also updated in production. localmac-14:09:08-~# fab -P -R csol-production -- sudo aptitude show nodejs | grep -i version [ec2-54-226-228-99.compute-1.amazonaws.com] out: Version: 0.8.26-1chl1~precise1 [ec2-54-226-131-111.compute-1.amazonaws.com] out: Version: 0.8.26-1chl1~precise1 [ec2-54-227-121-143.compute-1.amazonaws.com] out: Version: 0.8.26-1chl1~precise1 [ec2-50-16-137-240.compute-1.amazonaws.com] out: Version: 0.8.26-1chl1~precise1 [ec2-50-17-76-170.compute-1.amazonaws.com] out: Version: 0.8.26-1chl1~precise1 [ec2-107-22-107-215.compute-1.amazonaws.com] out: Version: 0.8.26-1chl1~precise1
Assignee | ||
Comment 10•11 years ago
|
||
Collusion all updated: localmac-14:11:07-~# fab -P -R collusiondb-staging -- sudo aptitude show nodejs|grep -i version;fab -P -R collusion-staging -- sudo aptitude show nodejs|grep -i version [ec2-54-243-10-111.compute-1.amazonaws.com] out: Version: 0.10.21-1chl1~precise1 [ec2-204-236-245-24.compute-1.amazonaws.com] out: Version: 0.10.21-1chl1~precise1
Assignee | ||
Comment 11•11 years ago
|
||
Good to close this out, our good prod kit has all been updated.
Status: REOPENED → RESOLVED
Closed: 11 years ago → 11 years ago
Resolution: --- → FIXED
You need to log in
before you can comment on or make changes to this bug.
Description
•