node-tar

7 known vulnerabilities · 0 critical · 0 high

Denial of service while parsing a tar file due to lack of folders count validation

Published Mar 22, 2024

Race Condition in node-tar Path Reservations via Unicode Ligature Collisions on macOS APFS

Published Jan 21, 2026

Arbitrary File Read/Write via Hardlink Target Escape Through Symlink Chain in node-tar Extraction

Published Feb 18, 2026

node-tar Vulnerable to Arbitrary File Creation/Overwrite via Hardlink Path Traversal

Published Jan 28, 2026

node-tar Symlink Path Traversal via Drive-Relative Linkpath

Published Mar 10, 2026

node-tar is Vulnerable to Arbitrary File Overwrite and Symlink Poisoning via Insufficient Path Sanitization

Published Jan 16, 2026

node-tar has a race condition leading to uninitialized memory exposure

Published Oct 30, 2025

Check your entire dependency tree at onceRun dependency scan →