{"id":"OSV-2024-204","summary":"Heap-use-after-free in JS_NewObjectFromShape","details":"OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=65872\n\n```\nCrash type: Heap-use-after-free WRITE 8\nCrash state:\nJS_NewObjectFromShape\njs_parse_template\njs_parse_postfix_expr\n```\n","modified":"2026-05-18T14:21:01.890705Z","published":"2024-03-27T00:00:05.756758Z","references":[{"type":"REPORT","url":"https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=65872"}],"affected":[{"package":{"name":"quickjs","ecosystem":"OSS-Fuzz","purl":"pkg:generic/quickjs"},"ranges":[{"type":"GIT","repo":"https://github.com/bellard/quickjs","events":[{"introduced":"bd0b7048de817045a5396fbfee893687521f16de"}]}],"ecosystem_specific":{"severity":"HIGH"},"database_specific":{"source":"https://github.com/google/oss-fuzz-vulns/blob/main/vulns/quickjs/OSV-2024-204.yaml","introduced_range":"3ab1c2b3148d1c70181607002aac23ecdd2ad482:3c2cfabfc74e8af1f21db93884ed1ad9b6388a8c"}}],"schema_version":"1.7.5"}