CVE-2026-0822 | quickjs-ng quickjs up to 0.11.0 quickjs.c js_typed_array_sort heap-based overflow (Issue 1297)

Inserito da Angelo Barbosa | Gen 9, 2026 | CVE

A vulnerability, which was classified as critical, has been found in quickjs-ng quickjs up to 0.11.0. This issue affects the function js_typed_array_sort of the file quickjs.c. The manipulation leads to heap-based buffer overflow.

This vulnerability is referenced as CVE-2026-0822. Remote exploitation of the attack is possible. Furthermore, an exploit is available.

To fix this issue, it is recommended to deploy a patch.

CVE-2026-0822 | quickjs-ng quickjs up to 0.11.0 quickjs.c js_typed_array_sort heap-based overflow (Issue 1297)

Post correlati

CVE-2024-47791 | Ruijie Reyee OS prior 2.320.x MQTT Broker wildcards or matching symbols (icsa-24-338-01)

CVE-2024-21038 | Oracle Complex Maintenance, Repair, and Overhaul up to 12.2.13 LOV Remote Code Execution

CVE-2024-5698 | Mozilla Firefox up to 126 Fullscreen clickjacking

CVE-2024-53689 | Linux Kernel up to 6.12.5 /sys/kernel/debug queue_attr_store deadlock