CVE-2026-1144
- Source
- https://cve.org/CVERecord?id=CVE-2026-1144
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-1144.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2026-1144
- Downstream
- Published
- 2026-01-19T08:16:04.857Z
- Modified
- 2026-03-15T22:53:08.880732Z
- Severity
-
- 8.8 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVSS Calculator
- Summary
- [none]
- Details
-
A vulnerability was detected in quickjs-ng quickjs up to 0.11.0. Affected is an unknown function of the file quickjs.c of the component Atomics Ops Handler. The manipulation results in use after free. The attack can be executed remotely. The exploit is now public and may be used. The patch is identified as ea3e9d77454e8fc9cb3ef3c504e9c16af5a80141. Applying a patch is advised to resolve this issue.
- References
-
- https://github.com/quickjs-ng/quickjs/
- https://vuldb.com/?submit.735537
- https://vuldb.com/?id.341737
- https://vuldb.com/?submit.735538
- https://github.com/quickjs-ng/quickjs/issues/1301
- https://vuldb.com/?ctiid.341737
- https://github.com/quickjs-ng/quickjs/issues/1302
- https://github.com/quickjs-ng/quickjs/commit/ea3e9d77454e8fc9cb3ef3c504e9c16af5a80141
- https://github.com/quickjs-ng/quickjs/pull/1303
Affected packages
Git / github.com/quickjs-ng/quickjs
Affected versions
v0.*
v0.1.0
v0.10.0
v0.10.1
v0.11.0
v0.2.0
v0.3.0
v0.4.0
v0.4.1
v0.5.0
v0.6.0
v0.6.1
v0.7.0
v0.8.0
v0.9.0
Database specific
source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-1144.json"
vanir_signatures
[
{
"signature_version": "v1",
"target": {
"file": "quickjs.c",
"function": "js_atomics_get_ptr"
},
"source": "https://github.com/quickjs-ng/quickjs/commit/ea3e9d77454e8fc9cb3ef3c504e9c16af5a80141",
"deprecated": false,
"digest": {
"function_hash": "69441095714613941506211269919152401348",
"length": 1255.0
},
"id": "CVE-2026-1144-105ade15",
"signature_type": "Function"
},
{
"signature_version": "v1",
"target": {
"file": "quickjs.c",
"function": "js_atomics_op"
},
"source": "https://github.com/quickjs-ng/quickjs/commit/ea3e9d77454e8fc9cb3ef3c504e9c16af5a80141",
"deprecated": false,
"digest": {
"function_hash": "26874902539025337203070108117086595403",
"length": 2962.0
},
"id": "CVE-2026-1144-3d990bf2",
"signature_type": "Function"
},
{
"signature_version": "v1",
"target": {
"file": "quickjs.c",
"function": "js_atomics_store"
},
"source": "https://github.com/quickjs-ng/quickjs/commit/ea3e9d77454e8fc9cb3ef3c504e9c16af5a80141",
"deprecated": false,
"digest": {
"function_hash": "309409533970169609655811863743694397246",
"length": 1035.0
},
"id": "CVE-2026-1144-9b2eb448",
"signature_type": "Function"
},
{
"signature_version": "v1",
"target": {
"file": "quickjs.c"
},
"source": "https://github.com/quickjs-ng/quickjs/commit/ea3e9d77454e8fc9cb3ef3c504e9c16af5a80141",
"deprecated": false,
"digest": {
"line_hashes": [
"268209606779118521136658125202483879207",
"251445291102482433830366851520702180350",
"175742697648455932199540036296153384797",
"277753712598156062963154582169793182093",
"208242772867384826728800776251418060833",
"58695466046969264474179097324027616206",
"2023395056430071489881368086213063625",
"270989914505313522720505790378803810949",
"290653954896808097102524818328228554741",
"248862313038172266217970425385529389897",
"335356008932640452605556334034047785746",
"240323056716659032967798647221811188487",
"179696916395701865496066326880656690488",
"290002710719273985286661052854742762184",
"76447354974636994543887394872594037249",
"258009423207522272098246683936323443690",
"16246026975426757773905975705693026565",
"264673253340418615128533838137916559406",
"110984932117090567223396651327887767231",
"116660731643870025003791564306574884161",
"1306311901843925887091745947466444138",
"248627588009122157777458332559837071284",
"77916566655587897952205423871012383135",
"212948561762133056618676741855919024438",
"55080550118126356462746339721640750997",
"272061575001673386119487627445573868240",
"227977512754595142275543692563174925442",
"143959316054269918304808889588659510124",
"62507355959552702944808348989355118267",
"303344183987466766641675742194766453321",
"3346403931597834680256118996889756813",
"265030672236099031007648213165974301229",
"161237174937394434657031961226359238747",
"226180559299604868696681850315951317087",
"9557716914629706370605673168883942509",
"204468701525471269120098492183557968177",
"384250361174677596076636132700834809",
"334306343629825185925254542537143844753",
"245002431936132358222541648676645317705",
"27082037815108486614505204173838341772",
"238387495570068214767873512358849287313",
"39950955807605986029067297038837347085",
"143849437911342306201328216667676325922",
"51280109752551932660187010988760691841",
"112658926591444064774004177702746170005",
"311072444025772281245146268882253701043",
"198708231613172330636328592559457043856",
"140755824832467443925100276202388906649",
"28843470254450522901155123725444960320",
"124498447600840041601691453298856857404",
"96024384501754725150769937060989497064",
"38113986840113282356540853461377423518",
"333494028716964271310908241563496148222",
"335941921202954439400532037736178754340",
"168762274386100337697785853035130170256",
"134985574421325605287785395858185409548",
"21533613969447620194821249412622502429",
"208535065391166976688929176151247520790",
"241866070667718316418057009505968928932",
"69306311615947143136500261590889177916",
"330160537023574775082428277597219295126",
"293546965827391285291400371937942922406",
"264190658748127949689892238656382004654",
"131858523207396165397884973965634519125",
"194040895353332482602100299820546746819",
"12630012651146473711403930739188660941",
"293546965827391285291400371937942922406",
"264190658748127949689892238656382004654",
"286009521211853207475109058446538217093",
"334705883587000845532686423699914027727",
"31040932138324586874975772963693669060",
"138759843874869738355961697945963429895",
"108771665326650277723266382989989607300",
"72049753499337920640279422959664995696",
"52110565729424081756663160980701464193",
"128473172837376671350522122833967604781",
"231878041339927365295613687271728397188",
"205671528826988963841530952181556592421",
"328752197547340070625066368450666767028",
"153228544315283092807881121480044964174",
"90810439707034512346259845777342669444",
"83457257121018578965165381076743346992",
"103742328715787848725636826545055322764",
"3645785420476229744827930110108046469",
"282661959035912094698074438053711079194",
"120963109813290778822028867569581615475",
"73984068485905444712856676444774142977",
"308636728129319738117096777640567265258",
"192098392320802276299412439122515185466",
"141384967548756730596740196202262757256",
"89302835504603907995045817616643686172",
"149389198453178619566533884926283367629",
"227872768901948628438754231963381990837",
"305696092531590221675418956137279661198",
"140500238634786755926330204867914599977",
"80755509717304509294589408970109746142",
"297103211697452158758433868032833396844",
"264190658748127949689892238656382004654",
"10683562397541357202378656629120782822",
"183834012870450114731687299063312663078",
"326812456150517329544778411399886290273",
"39771229014374857732906358737961705352",
"259580483050638182667550592292286055037"
],
"threshold": 0.9
},
"id": "CVE-2026-1144-aac86c98",
"signature_type": "Line"
},
{
"signature_version": "v1",
"target": {
"file": "quickjs.c",
"function": "js_atomics_notify"
},
"source": "https://github.com/quickjs-ng/quickjs/commit/ea3e9d77454e8fc9cb3ef3c504e9c16af5a80141",
"deprecated": false,
"digest": {
"function_hash": "12208015425851814649280547482097169736",
"length": 1017.0
},
"id": "CVE-2026-1144-e7f7e824",
"signature_type": "Function"
},
{
"signature_version": "v1",
"target": {
"file": "quickjs.c",
"function": "js_atomics_wait"
},
"source": "https://github.com/quickjs-ng/quickjs/commit/ea3e9d77454e8fc9cb3ef3c504e9c16af5a80141",
"deprecated": false,
"digest": {
"function_hash": "324894869378092614044051099033595473588",
"length": 1533.0
},
"id": "CVE-2026-1144-f96ffee8",
"signature_type": "Function"
}
]