Bugs fixes in "node-tar"
| Origin | Bug number | Title | Date fixed |
|---|---|---|---|
| CVE | CVE-2026-23745 | node-tar is a Tar for Node.js. The node-tar library (<= 7.5.2) fails to sanitize the linkpath of Link (hardlink) and SymbolicLink entries when preser | 2026-04-18 |
| CVE | CVE-2026-31802 | node-tar is a full-featured Tar for Node.js. Prior to version 7.5.11, tar (npm) can be tricked into creating a symlink that points outside the extrac | 2026-04-18 |
| CVE | CVE-2026-24842 | node-tar,a Tar for Node.js, contains a vulnerability in versions prior to 7.5.7 where the security check for hardlink entries uses different path res | 2026-04-18 |
| CVE | CVE-2026-23745 | node-tar is a Tar for Node.js. The node-tar library (<= 7.5.2) fails to sanitize the linkpath of Link (hardlink) and SymbolicLink entries when preser | 2026-04-18 |
| CVE | CVE-2026-31802 | node-tar is a full-featured Tar for Node.js. Prior to version 7.5.11, tar (npm) can be tricked into creating a symlink that points outside the extrac | 2026-04-18 |
| CVE | CVE-2026-24842 | node-tar,a Tar for Node.js, contains a vulnerability in versions prior to 7.5.7 where the security check for hardlink entries uses different path res | 2026-04-18 |
About
-
Send Feedback to @ubuntu_updates
