| Release | Version |
|---|---|
| bullseye | 6.0.5+ds1+~cs11.3.9-1+deb11u2 |
| bookworm | 6.1.13+~cs7.0.5-1 |
| trixie | 6.2.1+~cs7.0.8-1 |
| forky | 6.2.1+ds1+~cs6.1.13-7 |
| sid | 6.2.1+ds1+~cs6.1.13-7 |
| Bug | bullseye | bookworm | trixie | forky | sid | Description |
|---|---|---|---|---|---|---|
| CVE-2026-24842 | vulnerable | vulnerable | vulnerable | vulnerable | vulnerable | node-tar,a Tar for Node.js, contains a vulnerability in versions prior ... |
| CVE-2026-23745 | vulnerable | vulnerable | vulnerable | fixed | fixed | node-tar is a Tar for Node.js. The node-tar library (<= 7.5.2) fails t ... |
| CVE-2024-28863 | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | fixed | node-tar is a Tar for Node.js. node-tar prior to version 6.2.1 has no ... |
| Bug | bullseye | bookworm | trixie | forky | sid | Description |
|---|---|---|---|---|---|---|
| CVE-2026-23950 | vulnerable | vulnerable | vulnerable | fixed | fixed | node-tar,a Tar for Node.js, has a race condition vulnerability in vers ... |
| Bug | Description |
|---|---|
| CVE-2025-64118 | node-tar is a Tar for Node.js. In 7.5.1, using .t (aka .list) with { s ... |
| CVE-2021-37713 | The npm package "tar" (aka node-tar) before versions 4.4.18, 5.0.10, a ... |
| CVE-2021-37712 | The npm package "tar" (aka node-tar) before versions 4.4.18, 5.0.10, a ... |
| CVE-2021-37701 | The npm package "tar" (aka node-tar) before versions 4.4.16, 5.0.8, an ... |
| CVE-2021-32804 | The npm package "tar" (aka node-tar) before versions 6.1.1, 5.0.6, 4.4 ... |
| CVE-2021-32803 | The npm package "tar" (aka node-tar) before versions 6.1.2, 5.0.7, 4.4 ... |
| CVE-2018-20834 | A vulnerability was found in node-tar before version 4.4.2 (excluding ... |
| CVE-2015-8860 | The tar package before 2.0.0 for Node.js allows remote attackers to wr ... |
| DSA / DLA | Description |
|---|---|
| DLA-3237-1 | node-tar - security update |
| DSA-5008-1 | node-tar - security update |