Alerts This Week
Warning Icon 1 1,375
Alerts This Week
Warning Icon 1 1,375

Ubuntu 20.04: USN-7693-1 node-qs Important DoS Prototype Pollution

ubuntu
Calendar Grey August 14, 2025
Dist Ubuntu Esm H88
Important patch released for Ubuntu 20.04 to fix node-qs vulnerability that allows denial of service through prototype pollution. Upgrade immediately!
qs could be made to crash if it received specially crafted network traffic.

Summary

qs could be made to crash if it received specially crafted network

traffic.

Software Description:

- node-qs: A querystring parsing and stringifying library

Details:

Nathanael Braun and Johan Brissaud discovered that qs was vulnerable

to prototype pollution. A remote attacker could possibly use this issue

to cause a denial of service.

Update Instructions

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 20.04 LTS
  node-qs                         6.9.1+ds-1ubuntu0.1~esm1
                                  Available with Ubuntu Pro

In general, a standard system update will make all the necessary changes.

References

https://ubuntu.com/security/notices/USN-7693-1

CVE-2022-24999

Severity
important
Lowest
Low
Medium
High
Critical

Ubuntu Security Notice USN-7693-1

Package Information

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here