npm/fstream

Releases46

Frequency2 months 3 hours

Last Release about 7 years ago

Stars209

Advanced FS Streaming for Node

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2019-13173 ↗	Jul 2, 2019Tuesday, 2 July 2019, 20:15	—	6.4 MEDIUM
fstream before 1.0.12 is vulnerable to Arbitrary File Overwrite. Extracting tarballs containing a hardlink to a file that already exists in the system, and a file that matches the hardlink, will overwrite the system's file with the contents of the extracted file. The fstream.DirWriter() function is vulnerable.