Количество 4
Количество 4
CVE-2025-64118
node-tar is a Tar for Node.js. In 7.5.1, using .t (aka .list) with { sync: true } to read tar entry contents returns uninitialized memory contents if tar file was changed on disk to a smaller size while being read. This vulnerability is fixed in 7.5.2.
CVE-2025-64118
node-tar is a Tar for Node.js. In 7.5.1, using .t (aka .list) with { sync: true } to read tar entry contents returns uninitialized memory contents if tar file was changed on disk to a smaller size while being read. This vulnerability is fixed in 7.5.2.
CVE-2025-64118
node-tar is a Tar for Node.js. In 7.5.1, using .t (aka .list) with { s ...
GHSA-29xp-372q-xqph
node-tar has a race condition leading to uninitialized memory exposure
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2025-64118 node-tar is a Tar for Node.js. In 7.5.1, using .t (aka .list) with { sync: true } to read tar entry contents returns uninitialized memory contents if tar file was changed on disk to a smaller size while being read. This vulnerability is fixed in 7.5.2. | 0% Низкий | 3 месяца назад | |
 | CVE-2025-64118 node-tar is a Tar for Node.js. In 7.5.1, using .t (aka .list) with { sync: true } to read tar entry contents returns uninitialized memory contents if tar file was changed on disk to a smaller size while being read. This vulnerability is fixed in 7.5.2. | 0% Низкий | 3 месяца назад | |
| CVE-2025-64118 node-tar is a Tar for Node.js. In 7.5.1, using .t (aka .list) with { s ... | 0% Низкий | 3 месяца назад | |
| GHSA-29xp-372q-xqph node-tar has a race condition leading to uninitialized memory exposure | 0% Низкий | 3 месяца назад |
Уязвимостей на страницу