Information on source package node-tar

Available versions

ReleaseVersion
buster4.4.6+ds1-3+deb10u1
buster (security)4.4.6+ds1-3+deb10u2
bullseye6.0.5+ds1+~cs11.3.9-1+deb11u2
bookworm6.1.13+~cs7.0.5-1
trixie6.1.13+~cs7.0.5-3
sid6.1.13+~cs7.0.5-3

Open issues

BugbusterbullseyebookwormtrixiesidDescription
CVE-2024-28863vulnerable (no DSA)vulnerable (no DSA)vulnerable (no DSA)fixedfixednode-tar is a Tar for Node.js. node-tar prior to version 6.2.1 has no ...

Resolved issues

BugDescription
CVE-2021-37713The npm package "tar" (aka node-tar) before versions 4.4.18, 5.0.10, a ...
CVE-2021-37712The npm package "tar" (aka node-tar) before versions 4.4.18, 5.0.10, a ...
CVE-2021-37701The npm package "tar" (aka node-tar) before versions 4.4.16, 5.0.8, an ...
CVE-2021-32804The npm package "tar" (aka node-tar) before versions 6.1.1, 5.0.6, 4.4 ...
CVE-2021-32803The npm package "tar" (aka node-tar) before versions 6.1.2, 5.0.7, 4.4 ...
CVE-2018-20834A vulnerability was found in node-tar before version 4.4.2 (excluding ...
CVE-2015-8860The tar package before 2.0.0 for Node.js allows remote attackers to wr ...

Security announcements

DSA / DLADescription
DLA-3237-1node-tar - security update
DSA-5008-1node-tar - security update
Search for package or bug name: Reporting problems