You are viewing a plain text version of this content. The canonical link for it is here.
Posted to notifications@skywalking.apache.org by wu...@apache.org on 2022/07/19 15:03:26 UTC

[skywalking-website] branch master updated: Update index.md

This is an automated email from the ASF dual-hosted git repository.

wusheng pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/skywalking-website.git


The following commit(s) were added to refs/heads/master by this push:
     new 344c38f539 Update index.md
344c38f539 is described below

commit 344c38f539086a7e8e5d5e3a7300d92cad66a86f
Author: 吴晟 Wu Sheng <wu...@foxmail.com>
AuthorDate: Tue Jul 19 23:03:22 2022 +0800

    Update index.md
---
 .../events/release-apache-skywalking-nodejs-0-5-1/index.md   | 12 ++++++------
 1 file changed, 6 insertions(+), 6 deletions(-)

diff --git a/content/events/release-apache-skywalking-nodejs-0-5-1/index.md b/content/events/release-apache-skywalking-nodejs-0-5-1/index.md
index 4793b09a0f..7b15bc68e4 100644
--- a/content/events/release-apache-skywalking-nodejs-0-5-1/index.md
+++ b/content/events/release-apache-skywalking-nodejs-0-5-1/index.md
@@ -1,16 +1,16 @@
 ---
-title: "Release Apache SkyWalking for NodeJS 0.5.1"
+title: "[CVE-2022-36127] Release Apache SkyWalking for NodeJS 0.5.1"
 date: 2022-07-18
 author: SkyWalking Team
-description: "Release Apache SkyWalking NodeJS 0.5.1."
+description: "Release Apache SkyWalking NodeJS 0.5.1 to fix CVE-2022-36127."
 ---
 
 SkyWalking NodeJS 0.5.1 is released. Go to [downloads](/downloads) page to find release tars.
 
-SkyWalking NodeJS 0.5.1 is a patch release that fixed a vulnerability in all previous
+SkyWalking NodeJS 0.5.1 is a patch release that fixed a vulnerability([CVE-2022-36127](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-36127)) in all previous
 versions <=0.5.0, we recommend all users who are using versions <=0.5.0 should upgrade to this version.
 
-The vulnerability will cause NodeJS services that has this agent installed to be unavailable
+The vulnerability could cause NodeJS services that has this agent installed to be unavailable
 if the header includes an illegal SkyWalking header, such as 
-(1) OAP is unhealthy and the downstream service's agent can't establish the connection.
-(2) Some sampling mechanism is activated in downstream agents.
+- OAP is unhealthy and the downstream service's agent can't establish the connection.
+- Some sampling mechanism is activated in downstream agents.