node-tar - Debian Package Tracker

general

source: node-tar (main)
version: 6.2.1+~cs7.0.8-1
maintainer: Debian Javascript Maintainers (archive) (DMD)
uploaders: Jérémy Lal [DMD]
arch: all
std-ver: 4.6.2
VCS: Git (Browse, QA)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

oldstable: 6.0.5+ds1+~cs11.3.9-1+deb11u2
old-sec: 6.0.5+ds1+~cs11.3.9-1+deb11u2
old-bpo: 6.1.11+~cs11.3.10-1~bpo11+1
stable: 6.1.13+~cs7.0.5-1
testing: 6.2.1+~cs7.0.8-1
unstable: 6.2.1+~cs7.0.8-1

versioned links

6.0.5+ds1+~cs11.3.9-1+deb11u2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
6.1.11+~cs11.3.10-1~bpo11+1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
6.1.13+~cs7.0.5-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
6.2.1+~cs7.0.8-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

node-tar

action needed

A new upstream version is available: 7.4.3+~cs7.0.8 high

A new upstream version 7.4.3+~cs7.0.8 is available, you should consider packaging it.

Created: 2023-05-05 Last update: 2025-07-24 18:00

lintian reports 4 warnings normal

Lintian reports 4 warnings about this package. You should make the package lintian clean getting rid of them.

Created: 2024-08-10 Last update: 2024-08-12 22:41

1 low-priority security issue in bookworm low

There is 1 open security issue in bookworm.

1 issue left for the package maintainer to handle:

CVE-2024-28863: (needs triaging) node-tar is a Tar for Node.js. node-tar prior to version 6.2.1 has no limit on the number of sub-folders created in the folder creation process. An attacker who generates a large number of sub-folders can consume memory on the system running node-tar and even crash the Node.js client within few seconds of running it using a path with too many sub-folders inside. Version 6.2.1 fixes this issue by preventing extraction in excessively deep sub-folders.

You can find information about how to handle this issue in the security team's documentation.

Created: 2024-03-22 Last update: 2025-02-27 05:02

Standards version of the package is outdated. wishlist

The package should be updated to follow the last version of Debian Policy (Standards-Version 4.7.2 instead of 4.6.2).

Created: 2024-04-07 Last update: 2025-02-27 13:24

news

[rss feed]

[2024-08-14] node-tar 6.2.1+~cs7.0.8-1 MIGRATED to testing (Debian testing watch)
[2024-08-12] Accepted node-tar 6.2.1+~cs7.0.8-1 (source) into unstable (Bastien Roucariès) (signed by: Bastien ROUCARIÈS)
[2024-08-09] Accepted node-tar 6.1.13+~cs7.0.5-4 (source) into unstable (Bastien Roucariès) (signed by: Bastien ROUCARIÈS)
[2024-04-05] node-tar 6.1.13+~cs7.0.5-3 MIGRATED to testing (Debian testing watch)
[2024-04-03] Accepted node-tar 6.1.13+~cs7.0.5-3 (source) into unstable (Yadd) (signed by: Xavier Guimard)
[2024-03-22] Accepted node-tar 6.1.13+~cs7.0.5-2 (source) into unstable (Yadd) (signed by: Xavier Guimard)
[2022-12-25] node-tar 6.1.13+~cs7.0.5-1 MIGRATED to testing (Debian testing watch)
[2022-12-17] Accepted node-tar 6.1.13+~cs7.0.5-1 (source) into unstable (Yadd) (signed by: Xavier Guimard)
[2022-12-12] Accepted node-tar 4.4.6+ds1-3+deb10u2 (source) into oldstable (Guilhem Moulin)
[2022-11-11] node-tar 6.1.12+~cs6.1.5-1 MIGRATED to testing (Debian testing watch)
[2022-11-04] Accepted node-tar 6.1.12+~cs6.1.5-1 (source) into unstable (Yadd) (signed by: Xavier Guimard)
[2022-04-16] node-tar 6.1.11+ds1+~cs6.0.6-2 MIGRATED to testing (Debian testing watch)
[2022-04-14] Accepted node-tar 6.1.11+ds1+~cs6.0.6-2 (source) into unstable (Yadd) (signed by: Xavier Guimard)
[2022-03-07] Accepted node-tar 6.1.11+~cs11.3.10-1~bpo11+1 (source all) into bullseye-backports, bullseye-backports (Debian FTP Masters) (signed by: Xavier Guimard)
[2022-03-07] Accepted node-tar 6.1.11+~cs11.2.13-1~bpo11+1 (source all) into bullseye-backports, bullseye-backports (Debian FTP Masters) (signed by: Xavier Guimard)
[2022-02-26] node-tar 6.1.11+ds1+~cs6.0.6-1 MIGRATED to testing (Debian testing watch)
[2022-02-26] node-tar 6.1.11+ds1+~cs6.0.6-1 MIGRATED to testing (Debian testing watch)
[2022-02-23] Accepted node-tar 6.1.11+ds1+~cs6.0.6-1 (source) into unstable (Yadd) (signed by: Xavier Guimard)
[2021-11-15] Accepted node-tar 6.0.5+ds1+~cs11.3.9-1+deb11u2 (source) into proposed-updates->stable-new, proposed-updates (Debian FTP Masters) (signed by: Xavier Guimard)
[2021-11-11] Accepted node-tar 6.0.5+ds1+~cs11.3.9-1+deb11u2 (source) into stable-security->embargoed, stable-security (Debian FTP Masters) (signed by: Xavier Guimard)
[2021-10-02] Accepted node-tar 6.0.5+ds1+~cs11.3.9-1+deb11u1 (source) into proposed-updates->stable-new, proposed-updates (Debian FTP Masters) (signed by: Xavier Guimard)
[2021-10-01] Accepted node-tar 4.4.6+ds1-3+deb10u1 (source) into oldstable-proposed-updates->oldstable-new, oldstable-proposed-updates (Debian FTP Masters) (signed by: Xavier Guimard)
[2021-09-12] node-tar 6.1.11+~cs11.3.10-1 MIGRATED to testing (Debian testing watch)
[2021-09-09] Accepted node-tar 6.1.11+~cs11.3.10-1 (source) into unstable (Yadd) (signed by: Xavier Guimard)
[2021-08-16] node-tar 6.1.7+~cs11.3.10-1 MIGRATED to testing (Debian testing watch)
[2021-08-11] Accepted node-tar 6.1.7+~cs11.3.10-1 (source) into unstable (Yadd) (signed by: Xavier Guimard)
[2021-06-12] Accepted node-tar 6.1.0+ds1+~cs11.3.9-1 (source) into experimental (Ayoyimika Ajibade) (signed by: Praveen Arimbrathodiyil)
[2021-01-20] Accepted node-tar 6.0.5+ds1+~cs11.3.9-1~bpo10+2 (source all) into buster-backports, buster-backports (Debian FTP Masters) (signed by: Praveen Arimbrathodiyil)
[2021-01-20] Accepted node-tar 6.0.5+ds1+~cs11.3.9-1~bpo10+1 (source all) into buster-backports, buster-backports (Debian FTP Masters) (signed by: Praveen Arimbrathodiyil)
[2021-01-10] node-tar 6.0.5+ds1+~cs11.3.9-1 MIGRATED to testing (Debian testing watch)

bugs [bug history graph]

all: 0

links

homepage
lintian (0, 4)
buildd: logs, reproducibility
popcon
browse source code
edit tags
other distros
security tracker
screenshots
debian patches
debci

ubuntu

[Information about Ubuntu for Debian Developers]

version: 6.2.1+~cs7.0.8-1