Lucene search

K

GitHub security update: Vulnerabilities in tar and @npmcli/arborist

🗓️ 08 Sep 2021 16:32:00Reported by Mike HanleyType 
github
 github
🔗 github.blog👁 47 Views

GitHub security update: Vulnerabilities in tar and @npmcli/arborist. Node.js packages `tar` and `@npmcli/arborist` found to have file overwrite and creation vulnerabilities leading to arbitrary code execution when extracting untrusted tar files or installing untrusted npm packages. Seven CVEs assigned

Show more
Related

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo