-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Tue, 24 Mar 2026 12:02:57 +0100 Source: node-tar Architecture: source Version: 6.2.1+ds1+~cs6.1.13-10 Distribution: unstable Urgency: medium Maintainer: Debian Javascript Maintainers <pkg-javascript-devel@lists.alioth.debian.org> Changed-By: Xavier Guimard <yadd@debian.org> Changes: node-tar (6.2.1+ds1+~cs6.1.13-10) unstable; urgency=medium . * Team upload * Add patches for CVE-2026-24842 and CVE-2026-31802 (both introduced into 6.2.1+ds1+~cs6.1.13-6 with upstream patch to fix CVE-2026-23745) Checksums-Sha1: 470a6f9070f337be26828442d5a5c909b8c0e533 2722 node-tar_6.2.1+ds1+~cs6.1.13-10.dsc 97e180dc9f53d9ca81afb8dc8a2515d52e2f0461 17112 node-tar_6.2.1+ds1+~cs6.1.13-10.debian.tar.xz Checksums-Sha256: 01181cde9dc9e2440319cc5a6299d77a8023b2fef16f58f118d4b0bf3828029b 2722 node-tar_6.2.1+ds1+~cs6.1.13-10.dsc 4b57dd557558432023d5e1b325ff0c39e1a8683d346fac6c94911a06c729561f 17112 node-tar_6.2.1+ds1+~cs6.1.13-10.debian.tar.xz Files: 642b73163f1cab93857a292433c832a4 2722 javascript optional node-tar_6.2.1+ds1+~cs6.1.13-10.dsc 79995544254e9c93b0adda207ba95860 17112 javascript optional node-tar_6.2.1+ds1+~cs6.1.13-10.debian.tar.xz -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEAN/li4tVV3nRAF7J9tdMp8mZ7ukFAmnCcG4ACgkQ9tdMp8mZ 7ulReA/7BAK79KUnEk4x7iFuxagPWyJIcBLDT4WddAK6pIHboGDLFW+pj2L/iFBw zAzgOGeWfohD/R7xFGuq8V0PQQSvdktTfrHJjd6DBv74rznPOSya5fybh+pB/+P1 NO0myfOD8ljGQ/6N9p4Dc9AuiZob54jUaUp+VtbwKIDIeq+TIKhiIn/iHj63t3rF SrmcnmOcTbJvPo16GUp5d5HmvnzX6zrl6WvkPb8H83fmQmOTrcea/8OliWLhz8iA wFupai9JD6bYIRFw7+Td17qfMTZb5BET9pvg5fjKsX9CudMLbsj/BtPXIU8yG+GR +96dRRnVIn9Lu6rrosCzLeG2c31cG5aYJYExI/9bqT8NGjt4DXzLPRdzNLRCIwV1 uiDBVL/Kpj31PclBSMJ+hIW3D/wWAvSn4HUzgDarThUMAzyT/THSuZxUP/4y9qNi F7eGHfskw2dqsKPkeq3lY6cltLccjOuO/IGOyOJF7MlwgvM9f4mSOmsBMfzJOTDb S9xAf3QKJnniXo5PORmJeyzvylQN7VGbu0fKvDb378jZyvQ+E+NEKkX36fAuPHeD qaUZl8xX7XtcV1nKizTlCMCuCvNTN7QMgGCq8fvW8HGJ0YGOyawbxlYDsIJQz7jq 1vkxYnDq7ZhyCSPNtI4wGQ0B1X2amez2gYwuFSiFfdV62xvpeJo= =uScG -----END PGP SIGNATURE-----
