| Release | Version |
|---|---|
| buster | 6.5.2-1 |
| buster (security) | 6.5.2-1+deb10u1 |
| bullseye | 6.9.4+ds-1+deb11u1 |
| bookworm | 6.11.0+ds+~6.9.7-3 |
| trixie | 6.11.0+ds+~6.9.7-4 |
| sid | 6.11.0+ds+~6.9.7-4 |
| Bug | Description |
|---|---|
| CVE-2022-24999 | qs before 6.10.3, as used in Express before 4.17.3 and other products, ... |
| CVE-2014-10064 | The qs module before 1.0.0 does not have an option or default for spec ... |
| CVE-2014-7191 | The qs module before 1.0.0 in Node.js does not call the compact functi ... |
| DSA / DLA | Description |
|---|---|
| DLA-3299-1 | node-qs - security update |