Ubuntu 24.04 LTS node-form-data Important Unintended Access USN-7976-1
ubuntu
January 27, 2026
Form-Data could be made to allow unintended access.
Summary
Form-Data could be made to allow unintended access.
Software Description:
- node-form-data: A library to create readable 'multipart/form-data' streams
Details:
Ben Shonaldmann discovered that Form-data incorrectly generated boundary
values for multipart form-encoded data, leading to predictable values. A
remote attacker could possibly use this issue to make arbitrary requests
to internal systems.
Topics Covered
Update Instructions
The problem can be corrected by updating your system to the following
package versions:
Ubuntu 24.04 LTS
node-form-data 4.0.0-1ubuntu0.1
Ubuntu 22.04 LTS
node-form-data 3.0.1-1ubuntu0.1~esm1
Available with Ubuntu Pro
Ubuntu 20.04 LTS
node-form-data 3.0.0-2ubuntu0.1~esm1
Available with Ubuntu Pro
Ubuntu 18.04 LTS
node-form-data 0.1.0-1ubuntu0.18.04.1~esm1
Available with Ubuntu Pro
Ubuntu 16.04 LTS
node-form-data 0.1.0-1ubuntu0.16.04.1~esm1
Available with Ubuntu Pro
Ubuntu 14.04 LTS
node-form-data 0.1.0-1ubuntu0.14.04.1~esm1
Available with Ubuntu Pro
In general, a standard system update will make all the necessary changes.References
https://ubuntu.com/security/notices/USN-7976-1
CVE-2025-7783
PREVIOUS
NEXT
Severity
important
Lowest
Low
Medium
High
Critical
Ubuntu Security Notice USN-7976-1
Topics Covered
Package Information
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!