[Git][security-tracker-team/security-tracker][master] Track fixed version for CVE-2026-32766/rust-astral-tokio-tar via unstable
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Fri Mar 27 05:08:32 GMT 2026
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
5974c8e3 by Salvatore Bonaccorso at 2026-03-27T06:07:32+01:00
Track fixed version for CVE-2026-32766/rust-astral-tokio-tar via unstable
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -4628,7 +4628,7 @@ CVE-2026-32768 (Chall-Manager is a platform-agnostic system able to start Challe
CVE-2026-32767 (SiYuan is a personal knowledge management system. Versions 3.6.0 and b ...)
NOT-FOR-US: SiYuan
CVE-2026-32766 (astral-tokio-tar is a tar archive reading/writing library for async Ru ...)
- - rust-astral-tokio-tar <unfixed> (bug #1131491)
+ - rust-astral-tokio-tar 0.6.0-1 (bug #1131491)
NOTE: https://rustsec.org/advisories/RUSTSEC-2026-0066.html
NOTE: https://github.com/astral-sh/tokio-tar/security/advisories/GHSA-6gx3-4362-rf54
NOTE: Fixed by: https://github.com/astral-sh/tokio-tar/commit/e5e0139cae4577eeedf5fc16b65e690bf988ce52 (v0.6.0)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5974c8e38687a4cf7f649f7b9acbe45e451ca759
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5974c8e38687a4cf7f649f7b9acbe45e451ca759
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260327/4b0af406/attachment.htm>
More information about the debian-security-tracker-commits
mailing list