pkg:crates.io/astral-tokio-tar

共 5 筆 CVEHIGH2MEDIUM2

✅ 檢查你的版本

所有已知漏洞

  • HIGH8.1CVE-2025-62518`tokio-tar` parses PAX extended headers incorrectly, allows file smuggling
    from 0, < 0.5.6
  • HIGH8.1CVE-2025-62518`tokio-tar` parses PAX extended headers incorrectly, allows file smuggling
    >= 0.0.0-0, < 0.5.6
  • MEDIUM5.3CVE-2026-32766Insufficient validation of PAX extensions during extraction
    from 0, < 0.6.0
  • MEDIUM5.3CVE-2026-32766Insufficient validation of PAX extensions during extraction
    >= 0.0.0-0, < 0.6.0
  • CVE-2025-59825astral-tokio-tar has a path traversal in tar extraction
    from 0, < 0.5.4