[Git][security-tracker-team/security-tracker][master] Track proposed node-tar update via bookworm-pu

Salvatore Bonaccorso (@carnil) carnil at debian.org
Wed Jun 24 15:19:28 BST 2026



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
f2ef863e by Salvatore Bonaccorso at 2026-06-24T16:19:21+02:00
Track proposed node-tar update via bookworm-pu

Note as CVE-2026-24842 and CVE-2026-31802 not opened as along fixed so
should not be tracked as fixed with that update.

- - - - -


1 changed file:

- data/next-oldstable-point-update.txt


Changes:

=====================================
data/next-oldstable-point-update.txt
=====================================
@@ -186,3 +186,11 @@ CVE-2026-40393
 	[bookworm] - mesa 22.3.6-1+deb12u2
 CVE-2023-40587
 	[bookworm] - python-pyramid 2.0+dfsg-2+deb12u1
+CVE-2024-28863
+	[bookworm] - node-tar 6.1.13+~cs7.0.5-1+deb12u1
+CVE-2026-23745
+	[bookworm] - node-tar 6.1.13+~cs7.0.5-1+deb12u1
+CVE-2026-26960
+	[bookworm] - node-tar 6.1.13+~cs7.0.5-1+deb12u1
+CVE-2026-29786
+	[bookworm] - node-tar 6.1.13+~cs7.0.5-1+deb12u1



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f2ef863e484b933b30a797c3325253fc82d73f3e

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f2ef863e484b933b30a797c3325253fc82d73f3e
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260624/3984055a/attachment-0001.htm>


More information about the debian-security-tracker-commits mailing list