Lucene search
K

12 matches found

Tenable Nessus
Tenable Nessus
added 2025/08/24 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2018-11499

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A use-after-free vulnerability exists in handleerror in sasscontext.cpp in LibSass 3.4.x and 3.5.x through 3.5.4 that could be leveraged to cause a denial of...

9.8CVSS8AI score0.04006EPSS
Exploits0References2
IBM Security Bulletins
IBM Security Bulletins
added 2023/12/06 4:20 p.m.29 views

Security Bulletin: IBM Watson Machine Learning Accelerator on Cloud Pak for Data is vunerable to libsass and node-sass vulnerabilities

Summary IBM Watson Machine Learning Accelerator on Cloud Pak for Data is vunerable to the dependencies in the opensource library libsass-3.5.5 and opennms-opennms-source-25.1.1-1 . These are fixed. Vulnerability Details CVEID:CVE-2018-11696 DESCRIPTION: LibSaas is vulnerable to a denial of servic...

9.8CVSS7.6AI score0.04006EPSS
Exploits14Affected Software1
OpenVAS
OpenVAS
added 2023/01/27 12:0 a.m.26 views

Ubuntu: Security Advisory (USN-4837-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.7AI score0.04006EPSS
Exploits10References2
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.27 views

Mageia: Security Advisory (MGASA-2020-0049)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS6.9AI score0.04006EPSS
Exploits9References4
IBM Security Bulletins
IBM Security Bulletins
added 2020/12/15 7:3 a.m.44 views

Security Bulletin: Open Source Security issues for NPS console.

Summary Fixed Open Source issues for listed CVEs for NPS console. Vulnerability Details CVEID: CVE-2018-19838 DESCRIPTION: LibSass is vulnerable to a denial of service, caused by a stack-based buffer overflow in the IMPLEMENTASTOPERATORS expansion in ast.cpp. By persuading a victim to open a...

9.8CVSS1AI score0.05213EPSS
Exploits13Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2020/12/08 6:37 a.m.65 views

Security Bulletin: OSS security Scan issues for Concerto installer.

Summary Fixed in IBM Netezza for Cloud Pak for Data 11.1.1.0 Vulnerability Details CVEID: CVE-2018-19838 DESCRIPTION: LibSass is vulnerable to a denial of service, caused by a stack-based buffer overflow in the IMPLEMENTASTOPERATORS expansion in ast.cpp. By persuading a victim to open a...

9.8CVSS1.2AI score0.05213EPSS
Exploits13Affected Software1
Mageia
Mageia
added 2020/01/28 7:52 a.m.68 views

Updated libsass packages fix security vulnerabilities

Use-after-free vulnerability in sasscontext.cpp:handleerror CVE-2018-11499. Null pointer dereference in Sass::SelectorList::populateextends CVE-2018-19797. Use-after-free vulnerability exists in the SharedPtr class CVE-2018-19827. Stack overflow in Eval::operator CVE-2018-19837. Stack-overflow at...

9.8CVSS4.2AI score0.04006EPSS
Exploits9References2
OpenVAS
OpenVAS
added 2019/07/24 12:0 a.m.35 views

openSUSE: Security Advisory for libsass (openSUSE-SU-2019:1791-1)

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.8CVSS7.2AI score0.04006EPSS
Exploits9References2
Tenable Nessus
Tenable Nessus
added 2019/07/24 12:0 a.m.46 views

openSUSE Security Update : libsass (openSUSE-2019-1791)

This update for libsass to version 3.6.1 fixes the following issues : Security issues fixed : - CVE-2019-6283: Fixed heap-buffer-overflow in Sass::Prelexer::parenthesescopechar const boo1121943. - CVE-2019-6284: Fixed heap-based buffer over-read exists in Sass:Prelexer:alternatives boo1121944. -...

9.8CVSS6.4AI score0.04006EPSS
Exploits9References24
OPENSUSE Linux
OPENSUSE Linux
added 2019/07/23 12:0 a.m.97 views

Security update for libsass (moderate)

openSUSE Security Update: Security update for libsass Announcement ID: openSUSE-SU-2019:1791-1 Rating: moderate References: 1096894 1118301 1118346 1118348 1118349 1118351 1119789 1121943 1121944 1121945 1133200 1133201 Cross-References: CVE-2018-11499 CVE-2018-19797 CVE-2018-19827 CVE-2018-19837...

9.8CVSS8.1AI score0.04006EPSS
Exploits9References12
OSV
OSV
added 2018/05/26 8:29 p.m.0 views

DEBIAN-CVE-2018-11499

A use-after-free vulnerability exists in handleerror in sasscontext.cpp in LibSass 3.4.x and 3.5.x through 3.5.4 that could be leveraged to cause a denial of service application crash or possibly unspecified other impact...

9.8CVSS9.2AI score0.04006EPSS
Exploits0References1
CVE
CVE
added 2018/05/26 8:0 p.m.140 views

CVE-2018-11499

CVE-2018-11499 is a use-after-free in LibSass (sass_context.cpp, handle_error()) affecting LibSass 3.4.x and 3.5.x up to 3.5.4. It could crash the application (DoS) and potentially other impacts. Affected entries in connected docs point to LibSass vulnerabilities and advise upgrading to the lates...

9.8CVSS7.8AI score0.04006EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder