3.0.8
11 years ago
24 days ago
Known vulnerabilities in the tar-fs package. This does not include vulnerabilities belonging to this package’s dependencies.
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.
Fix for freeVulnerability | Vulnerable Version |
---|---|
tar-fs is a filesystem bindings for tar-stream. Affected versions of this package are vulnerable to Arbitrary File Overwrite. An attacker can overwrite files on the system when extracting a How to fix Arbitrary File Overwrite? Upgrade | <1.16.2 |