openssl security release 1.1.1g - vulnerability HIGH
Until the OpenSSL release occurs, we won't know if the issue affects Node.js or not.
https://mta.openssl.org/pipermail/openssl-announce/2020-April/000170.html
The OpenSSL project team would like to announce the forthcoming release of OpenSSL version 1.1.1g.
This release will be made available on Tuesday 21st April 2020 between 1300-1700 UTC.
OpenSSL 1.1.g is a security-fix release. The highest severity issue fixed in this release is HIGH: https://www.openssl.org/policies/secpolicy.html#high
Yours
The OpenSSL Project Team