[Git][security-tracker-team/security-tracker][master] node-tar fixed in experimental
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Wed Jun 24 16:29:01 BST 2026
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
fac93dac by Moritz Muehlenhoff at 2026-06-24T17:28:37+02:00
node-tar fixed in experimental
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1309,6 +1309,7 @@ CVE-2026-53778
CVE-2026-53663 (React Router is a router for React. From 7.12.0 until 7.15.1, certain ...)
NOT-FOR-US: React Router
CVE-2026-53655 (node-tar is a full-featured Tar for Node.js. Prior to 7.5.16, tar (nod ...)
+ [experimental] - node-tar 7.5.16+~4.0.1-1
- node-tar <unfixed>
NOTE: https://github.com/isaacs/node-tar/security/advisories/GHSA-vmf3-w455-68vh
CVE-2026-53632 (launch-editor allows users to open files with line numbers in editor f ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/fac93dac3c8c902e67cc034e8a808953c548d4bd
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/fac93dac3c8c902e67cc034e8a808953c548d4bd
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260624/181a4bc8/attachment.htm>
More information about the debian-security-tracker-commits
mailing list