CVE-2026-1144

Medium CVSS: 5.3

A vulnerability was detected in quickjs-ng quickjs up to 0.11.0. Affected is an unknown function of the file quickjs.c of the component Atomics Ops Handler. The manipulation results in use after free. The attack can be executed remotely. The exploit is now public and may be used. The patch is identified as ea3e9d77454e8fc9cb3ef3c504e9c16af5a80141. Applying a patch is advised to resolve this issue.

Vendor

Quickjs-ng

Product

Quickjs

CWE

CWE-119

Yayın Tarihi

2026-01-19 08:16:04

Güncelleme

2026-02-23 09:16:46

Source Identifier

cna@vuldb.com

KEV Date Added

Kategoriler

CWE-119 Quickjs MEDIUM Quickjs-ng 2026

Referanslar

https://github.com/quickjs-ng/quickjs/ https://github.com/quickjs-ng/quickjs/commit/ea3e9d77454e8fc9cb3ef3c504e9c16af5a80141 https://github.com/quickjs-ng/quickjs/issues/1301 https://github.com/quickjs-ng/quickjs/issues/1302 https://github.com/quickjs-ng/quickjs/pull/1303 https://vuldb.com/?ctiid.341737 https://vuldb.com/?id.341737 https://vuldb.com/?submit.735537 https://vuldb.com/?submit.735538

Benzer Kayıtlar

Medium

CVE-2026-1145

A flaw has been found in quickjs-ng quickjs up to 0.11.0. Affected by this vulnerability is the function js_typed_array_…

Medium

CVE-2026-0822

A vulnerability was identified in quickjs-ng quickjs up to 0.11.0. This issue affects the function js_typed_array_sort o…

Medium

CVE-2026-0821

A vulnerability was determined in quickjs-ng quickjs up to 0.11.0. This vulnerability affects the function js_typed_arra…

Medium

CVE-2025-46688

quickjs-ng through 0.9.0 has an incorrect size calculation in JS_ReadBigInt for a BigInt, leading to a heap-based buffer…

Medium

CVE-2024-13903

A vulnerability was found in quickjs-ng QuickJS up to 0.8.0. It has been declared as problematic. Affected by this vulne…