community/nodejs-current: upgrade to 9.2.1

See: https://nodejs.org/en/blog/vulnerability/december-2017-security-releases/

CVE-2017-3738 does not affect our package, because we don't use bundled
OpenSSL library. I'm not sure about CVE-2017-15896.

1 files changed, 8 insertions, 2 deletions

diff --git a/community/nodejs-current/APKBUILD b/community/nodejs-current/APKBUILD
index d47ce7b253..00b7be13fc 100644
--- a/community/nodejs-current/APKBUILD
+++ b/community/nodejs-current/APKBUILD
@@ -1,8 +1,14 @@
 # Contributor: Jakub Jirutka <jakub@jirutka.cz>
 # Maintainer: Jose-Luis Rivas <ghostbar@riseup.net>
+#
+# secfixes:
+#   9.2.1-r0:
+#     - CVE-2017-15896
+#     - CVE-2017-15897
+#
 pkgname=nodejs-current
 # The current stable version, i.e. non-LTS.
-pkgver=9.2.0
+pkgver=9.2.1
 pkgrel=0
 pkgdesc="JavaScript runtime built on V8 engine - current stable version"
 url="https://nodejs.org/"
@@ -68,5 +74,5 @@ package() {
 	rm "$pkgdir"/usr/bin/npm "$pkgdir"/usr/bin/npx
 }
 
-sha512sums="8cdea451616ff0cb44a34cda96ddca816636652cb3259ee4d2be13d9a4c724e5492a070374949a12b5ddc3c2473cd33a311985c5502c6de578b85b0b5f3ab873  node-v9.2.0.tar.gz
+sha512sums="c1b03b01d8e4b1d20e6c6adda0f72c46d564f48fa1e3dc954592ece131ec2458c05f7e46861241c00b5f71b7feab63bfbdac6ba1e16aa6d8fee3c140969d8d0f  node-v9.2.1.tar.gz
 ba95f21b1e80717ef63941854e7ed412f64a91da068c0dbf0d6d9697333ee266c9f4cd7bf1a01111eeb28aa66adefd8a58cfb3e82debb84b43e35e9dc914dd36  dont-run-gyp-files-for-bundled-deps.patch"