Register | Log in

node-tar

read and write portable tar archives module for Node.js

Choose email to subscribe with

general

source: node-tar (main)
version: 4.4.10+ds1-2
maintainer: Debian Javascript Maintainers (archive) (DMD)
uploaders: Jérémy Lal [DMD]
arch: all
std-ver: 4.4.0
VCS: Git (Browse, QA)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

o-o-stable: 0.1.18-1
oldstable: 2.2.1-1
old-bpo: 4.4.6+ds1-3~bpo9+1
stable: 4.4.6+ds1-3
testing: 4.4.10+ds1-2
unstable: 4.4.10+ds1-2

versioned links

0.1.18-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
2.2.1-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
4.4.6+ds1-3~bpo9+1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
4.4.6+ds1-3: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
4.4.10+ds1-2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

node-tar

action needed

A new upstream version is available: 5.0.5 high

A new upstream version 5.0.5 is available, you should consider packaging it.

Created: 2019-09-19 Last update: 2019-10-18 16:05

Fails to build during reproducibility testing normal

A package building reproducibly enables third parties to verify that the source matches the distributed binaries. It has been identified that this source package produced different results, failed to build or had other issues in a test environment. Please read about how to improve the situation!

Created: 2019-08-24 Last update: 2019-10-18 16:08

1 ignored security issue in jessie low

There is 1 open security issue in jessie.

1 issue skipped by the security teams:

CVE-2018-20834: A vulnerability was found in node-tar before version 4.4.2 (excluding version 2.2.2). An Arbitrary File Overwrite issue exists when extracting a tarball containing a hardlink to a file that already exists on the system, in conjunction with a later plain file with the same name as the hardlink. This plain file content replaces the existing file content. A patch has been applied to node-tar v2.2.2).

Please fix it.

Created: 2019-04-30 Last update: 2019-09-06 06:27

1 ignored security issue in stretch low

There is 1 open security issue in stretch.

1 issue skipped by the security teams:

CVE-2018-20834: A vulnerability was found in node-tar before version 4.4.2 (excluding version 2.2.2). An Arbitrary File Overwrite issue exists when extracting a tarball containing a hardlink to a file that already exists on the system, in conjunction with a later plain file with the same name as the hardlink. This plain file content replaces the existing file content. A patch has been applied to node-tar v2.2.2).

Please fix it.

Created: 2019-04-30 Last update: 2019-09-06 06:27

Standards version of the package is outdated. wishlist

The package should be updated to follow the last version of Debian Policy (Standards-Version 4.4.1 instead of 4.4.0).

Created: 2019-09-29 Last update: 2019-09-29 23:41

news

[2019-08-24] node-tar 4.4.10+ds1-2 MIGRATED to testing (Debian testing watch)
[2019-08-22] Accepted node-tar 4.4.10+ds1-2 (source) into unstable (Xavier Guimard)
[2019-07-27] Accepted node-tar 4.4.10+ds1-1 (source) into experimental (Xavier Guimard)
[2018-10-29] Accepted node-tar 4.4.6+ds1-3~bpo9+1 (source all) into stretch-backports, stretch-backports (Ross Gammon) (signed by: Praveen Arimbrathodiyil)
[2018-10-18] node-tar 4.4.6+ds1-3 MIGRATED to testing (Debian testing watch)
[2018-10-18] node-tar 4.4.6+ds1-3 MIGRATED to testing (Debian testing watch)
[2018-10-15] Accepted node-tar 4.4.6+ds1-3 (source) into unstable (Pirate Praveen) (signed by: Praveen Arimbrathodiyil)
[2018-10-03] node-tar 4.4.6+ds1-2 MIGRATED to testing (Debian testing watch)
[2018-09-27] Accepted node-tar 4.4.6+ds1-2 (source all) into unstable (Pirate Praveen) (signed by: Praveen Arimbrathodiyil)
[2018-09-21] node-tar 4.4.6+ds1-1 MIGRATED to testing (Debian testing watch)
[2018-09-16] Accepted node-tar 4.4.6+ds1-1 (source) into unstable (Pirate Praveen) (signed by: Praveen Arimbrathodiyil)
[2018-08-26] node-tar 4.4.4+ds1-2 MIGRATED to testing (Debian testing watch)
[2018-08-17] Accepted node-tar 4.4.4+ds1-2 (source) into unstable (Pirate Praveen) (signed by: Praveen Arimbrathodiyil)
[2018-07-19] Accepted node-tar 4.4.4+ds1-1 (source) into experimental (Jérémy Lal)
[2018-07-19] Accepted node-tar 4.4.4+ds-3 (source) into experimental (Jérémy Lal)
[2018-04-23] Accepted node-tar 4.4.1+ds-2 (source all) into experimental, experimental (Jérémy Lal)
[2016-11-24] node-tar 2.2.1-1 MIGRATED to testing (Debian testing watch)
[2016-11-18] Accepted node-tar 2.2.1-1 (source all) into unstable (Jérémy Lal)
[2015-04-27] node-tar 1.0.3-2 MIGRATED to testing (Britney)
[2015-03-15] Accepted node-tar 1.0.3-2 (source all) into unstable (Bas Couwenberg) (signed by: Sebastiaan Couwenberg)
[2015-03-14] Accepted node-tar 1.0.3-1 (source all) into unstable (Bas Couwenberg) (signed by: Sebastiaan Couwenberg)
[2013-09-04] node-tar 0.1.18-1 MIGRATED to testing (Debian testing watch)
[2013-08-15] Accepted node-tar 0.1.18-1 (source all) (Jérémy Lal)
[2013-03-22] Accepted node-tar 0.1.17-1 (source all) (Jérémy Lal)
[2012-03-21] Accepted node-tar 0.1.13-1 (source all) (Jérémy Lal)

bugs [bug history graph]

all: 0

links

homepage
lintian
buildd: logs, clang, reproducibility
popcon
browse source code
edit tags
security tracker
screenshots
debci

Debian Package Tracker — Copyright 2013-2018 The Distro Tracker Developers

Report problems to the tracker.debian.org pseudo-package in the Debian BTS.

Documentation — Bugs — Git Repository — Contributing