The qs module before 1.0.0 in Node.js does not call the compact function for array data, which allows remote attackers to cause a denial of service (memory consumption) by using a large index value to create a sparse array.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Node.js | Nodejs | * | 0.10.18 (including) |
| Red Hat Software Collections for Red Hat Enterprise Linux 6 | RedHat | nodejs010-node-gyp-0:3.2.0-3.el6 | * |
| Red Hat Software Collections for Red Hat Enterprise Linux 6 | RedHat | nodejs010-nodejs-qs-0:0.6.5-5.el6 | * |
| Red Hat Software Collections for Red Hat Enterprise Linux 6.6 EUS | RedHat | nodejs010-node-gyp-0:3.2.0-3.el6 | * |
| Red Hat Software Collections for Red Hat Enterprise Linux 6.6 EUS | RedHat | nodejs010-nodejs-qs-0:0.6.5-5.el6 | * |
| Red Hat Software Collections for Red Hat Enterprise Linux 6.7 EUS | RedHat | nodejs010-node-gyp-0:3.2.0-3.el6 | * |
| Red Hat Software Collections for Red Hat Enterprise Linux 6.7 EUS | RedHat | nodejs010-nodejs-qs-0:0.6.5-5.el6 | * |
| Red Hat Software Collections for Red Hat Enterprise Linux 7 | RedHat | nodejs010-node-gyp-0:3.2.0-3.el7 | * |
| Red Hat Software Collections for Red Hat Enterprise Linux 7 | RedHat | nodejs010-nodejs-qs-0:0.6.5-5.el7 | * |
| Red Hat Software Collections for Red Hat Enterprise Linux 7.1 EUS | RedHat | nodejs010-node-gyp-0:3.2.0-3.el7 | * |
| Red Hat Software Collections for Red Hat Enterprise Linux 7.1 EUS | RedHat | nodejs010-nodejs-qs-0:0.6.5-5.el7 | * |
| Red Hat Software Collections for Red Hat Enterprise Linux 7.2 EUS | RedHat | nodejs010-node-gyp-0:3.2.0-3.el7 | * |
| Red Hat Software Collections for Red Hat Enterprise Linux 7.2 EUS | RedHat | nodejs010-nodejs-qs-0:0.6.5-5.el7 | * |
| Node-qs | Ubuntu | artful | * |
| Node-qs | Ubuntu | esm-infra-legacy/trusty | * |
| Node-qs | Ubuntu | trusty | * |
| Node-qs | Ubuntu | trusty/esm | * |
| Node-qs | Ubuntu | upstream | * |
| Node-qs | Ubuntu | utopic | * |
| Node-qs | Ubuntu | vivid | * |
| Node-qs | Ubuntu | wily | * |
| Node-qs | Ubuntu | yakkety | * |
| Node-qs | Ubuntu | zesty | * |
References
- http://secunia.com/advisories/60026
- http://secunia.com/advisories/62170
- http://www-01.ibm.com/support/docview.wss?uid=swg21685987
- http://www-01.ibm.com/support/docview.wss?uid=swg21687263
- http://www-01.ibm.com/support/docview.wss?uid=swg21687928
- https://access.redhat.com/errata/RHSA-2016:1380
- https://exchange.xforce.ibmcloud.com/vulnerabilities/96729
- https://github.com/raymondfeng/node-querystring/commit/43a604b7847e56bba49d0ce3e222fe89569354d8
- https://github.com/visionmedia/node-querystring/issues/104
- https://nodesecurity.io/advisories/qs_dos_memory_exhaustion
- http://secunia.com/advisories/60026
- http://secunia.com/advisories/62170
- http://www-01.ibm.com/support/docview.wss?uid=swg21685987
- http://www-01.ibm.com/support/docview.wss?uid=swg21687263
- http://www-01.ibm.com/support/docview.wss?uid=swg21687928
- https://access.redhat.com/errata/RHSA-2016:1380
- https://exchange.xforce.ibmcloud.com/vulnerabilities/96729
- https://github.com/raymondfeng/node-querystring/commit/43a604b7847e56bba49d0ce3e222fe89569354d8
- https://github.com/visionmedia/node-querystring/issues/104
- https://nodesecurity.io/advisories/qs_dos_memory_exhaustion