| Release | Version |
|---|---|
| stretch | 2.2.1-1 |
| buster | 4.4.6+ds1-3+deb10u1 |
| bullseye | 6.0.5+ds1+~cs11.3.9-1+deb11u1 |
| bookworm | 6.1.11+~cs11.3.10-1 |
| sid | 6.1.11+~cs11.3.10-1 |
| Bug | stretch | buster | bullseye | bookworm | sid | Description |
|---|---|---|---|---|---|---|
| CVE-2021-37712 | vulnerable | vulnerable | vulnerable | fixed | fixed | The npm package "tar" (aka node-tar) before versions 4.4.18, 5.0.10, a ... |
| CVE-2021-37701 | vulnerable | vulnerable | vulnerable | fixed | fixed | The npm package "tar" (aka node-tar) before versions 4.4.16, 5.0.8, an ... |
| CVE-2018-20834 | vulnerable | fixed | fixed | fixed | fixed | A vulnerability was found in node-tar before version 4.4.2 (excluding ... |
| Bug | Description |
|---|---|
| CVE-2021-37713 | The npm package "tar" (aka node-tar) before versions 4.4.18, 5.0.10, a ... |
| CVE-2021-32804 | The npm package "tar" (aka node-tar) before versions 6.1.1, 5.0.6, 4.4 ... |
| CVE-2021-32803 | The npm package "tar" (aka node-tar) before versions 6.1.2, 5.0.7, 4.4 ... |
| CVE-2015-8860 | The tar package before 2.0.0 for Node.js allows remote attackers to wr ... |