Tar

by GnuWin32v1.13-1

Last updated Jun 8, 2026

The GNU Tar program provides the ability to create tar archives, as well as various other kinds of manipulation

Install with winget

$ winget install --id GnuWin32.Tar --exact --version 1.13-1

Run in Command Prompt, PowerShell, or Windows Terminal. Prompts for any agreements.

Silent install command for Tar

Tar uses EXE (Inno Setup). The silent install switches are /VERYSILENT /SUPPRESSMSGBOXES /NORESTART.

One-line silent install (x86)

installer.exe /VERYSILENT /SUPPRESSMSGBOXES /NORESTART

See the full silent install reference for Tar →

Built by Pckgr

For Intune admins

Stop chasing app updates. Pckgr patches them for you.

Automated application patching for Microsoft Intune. Pckgr keeps a curated library of 1,000+ apps continuously up-to-date in your tenant via Microsoft Graph - no manual repackaging, no chasing vendor sites.

Start free 30-day trial

No credit card required.

Installers · v1.13-1

Architecture	Type	Scope	Install	Download
x86	EXE Inno Setup	-		Direct

Copy a command tailored to that specific architecture, type, and scope - useful when winget would otherwise pick a different default.

Security

4 known CVEs via NVD

medium6.5Patched in wingetCVE-2026-33056affects before 0.4.45Mar 19, 2026
tar-rs is a tar archive reading/writing library for Rust. In versions 0.4.44 and below, when unpacking a tar archive, the tar crate's unpack_dir function uses fs::metadata() to check whether a path that already exists is a directory. Because fs::metadata() follows symbolic links...
Patch Vendor advisory
high7.5Patched in wingetCVE-2021-38511affects before 0.4.36Aug 10, 2021
An issue was discovered in the tar crate before 0.4.36 for Rust. When symlinks are present in a TAR archive, extraction can create arbitrary directories via .. traversal.
high8.2Fix in v3.2.2CVE-2021-32804affects before 3.2.2, 4.4.14, 5.0.6, 6.1.1Aug 3, 2021
The npm package "tar" (aka node-tar) before versions 6.1.1, 5.0.6, 4.4.14, and 3.3.2 has a arbitrary File Creation/Overwrite vulnerability due to insufficient absolute path sanitization. node-tar aims to prevent extraction of absolute file paths by turning absolute paths into re...
Patch
high8.2Fix in v3.2.3CVE-2021-32803affects before 3.2.3, 4.4.15, 5.0.7, 6.1.2Aug 3, 2021
The npm package "tar" (aka node-tar) before versions 6.1.2, 5.0.7, 4.4.15, and 3.2.3 has an arbitrary File Creation/Overwrite vulnerability via insufficient symlink protection. `node-tar` aims to guarantee that any file whose location would be modified by a symbolic link is not...
Patch

Source: NVD, updated 4h ago. Patch status is best-effort: NVD's fix version is compared against the latest version in winget, but the two version formats don't always align. Confirm with the vendor advisory before treating any specific build as safe.

See a CVE that affects your fleet? Push the patched version to Intune in one click with Pckgr.

Related apps

GnuWin32: MakeGnuWin32
GnuWin32.Makev3.81
GnuWin32.Make
GnuWin32: GzipGnuWin32
GnuWin32.Gzipv1.3.12-1
gzip (GNU zip) is a compression utility designed to be a replacement for compress. Its main advantages over compress are much better compression and freedom from patented algorithms.
GnuWin32: GrepGnuWin32
GnuWin32.Grepv2.5.4
Grep searches one or more input files for lines containing a match to a specified pattern. By default, grep prints the matching lines.
GnuWin32: UnZipGnuWin32
GnuWin32.UnZipv5.51-1
UnZip is an extraction utility for archives compressed in .zip format (also called "zipfiles").
PatchGnuWin32
GnuWin32.Patchv2.5.9-7
Patch: apply a diff file to an original.
GnuWin32: M4GnuWin32
GnuWin32.M4v1.4.13.0
M4: macro processor

Frequently asked questions

How do I install Tar on Windows?

Open Windows Terminal, PowerShell, or Command Prompt and run: winget install --id GnuWin32.Tar --exact --version 1.13-1. winget downloads the installer from GnuWin32 and runs it. Requires Windows 10 (1809+) or Windows 11.

How do I install Tar silently for unattended deployment?

Add --silent and accept the agreements upfront: winget install --id GnuWin32.Tar --exact 1.13-1 --silent --accept-package-agreements --accept-source-agreements. This is the variant Intune, Configuration Manager, and other deployment tools should use.

What are the silent install switches for Tar?

Tar uses EXE (Inno Setup). Run the downloaded installer with: installer.exe /VERYSILENT /SUPPRESSMSGBOXES /NORESTART. The silent switches are /VERYSILENT /SUPPRESSMSGBOXES /NORESTART.

How do I uninstall Tar via winget?

Run: winget uninstall --id GnuWin32.Tar --exact. Add --silent for unattended uninstalls. winget will use the registered uninstaller from Tar's Apps & Features entry.

Is Tar free?

Tar is distributed under GnuWin License. Refer to the publisher for the full license terms - Wingetly itself does not charge for installation.

Does Tar work on Windows 10?

Yes, as long as your Windows 10 build supports winget (1809 or newer). winget ships with App Installer on Windows 10/11 and pulls Tar directly from the publisher.

How do I keep Tar up to date?

Run winget upgrade --id GnuWin32.Tar --exact, or winget upgrade --all to update everything winget tracks. We index 1 version of Tar from microsoft/winget-pkgs.