Vulnerabilities in Node.js and the c-ares library were disclosed on July 11, 2017 by the Node.js Foundation. User action is needed to update your instances. For more information, see the security bulletin.