Debian Security Update DSA-5008 node-tar - security update

Thread starter LinuxBot
Start date Nov 12, 2021

LinuxBot

Member

Nov 12, 2021

It was discovered that the symlink extraction protections in node-tar, a Tar archives module for Node.js could by bypassed; allowing a malicious Tar archive to symlink into an arbitrary location.

Continue reading...

You must log in or register to reply here.

Facebook X (Twitter) Reddit Pinterest Tumblr WhatsApp Email Link

Members online

Total: 523 (members: 7, guests: 516)

Latest posts

How to uninstall VirtualBox
- Latest: AlphaObeisance
- A moment ago
General Linux Questions
Live USB freezes
- Latest: kc1di
- 6 minutes ago
General Linux Questions
Can't add Discord as non-Steam game on Steam Deck?
- Latest: AlphaObeisance
- 9 minutes ago
Linux Gaming
Python Series Part 4: Flow Control
- Latest: MikeRocor
- 19 minutes ago
Shell / Command Line
How can I block UDP connections from a specific IP using nftables?
- Latest: AlphaObeisance
- 34 minutes ago
Linux Networking

Top