Lucene search
+L

568 matches found

osv
osv
added 2023/12/18 5:4 p.m.5 views

SUSE-SU-2023:4895-1 Security update for libsass

This update for libsass fixes the following issues: - CVE-2022-26592: Fixed Stack Overflow vulnerability in libsass 3.6.5 via the CompoundSelector:hasrealparentref function bsc1214576 - CVE-2022-43358: Fixed Stack overflow vulnerability in astselectors.cpp bsc1214575. - CVE-2022-43357: Fixed Stac...

8.8CVSS7.8AI score0.01252EPSS
Exploits3References7
ibm
ibm
added 2023/12/06 4:20 p.m.30 views

Security Bulletin: IBM Watson Machine Learning Accelerator on Cloud Pak for Data is vunerable to libsass and node-sass vulnerabilities

Summary IBM Watson Machine Learning Accelerator on Cloud Pak for Data is vunerable to the dependencies in the opensource library libsass-3.5.5 and opennms-opennms-source-25.1.1-1 . These are fixed. Vulnerability Details CVEID:CVE-2018-11696 DESCRIPTION: LibSaas is vulnerable to a denial of servic...

9.8CVSS7.6AI score0.04006EPSS
Exploits14Affected Software1
nessus
nessus
added 2023/10/20 12:0 a.m.35 views

Ubuntu 18.04 ESM : LibSass vulnerabilities (USN-4837-1)

The remote Ubuntu 18.04 ESM host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-4837-1 advisory. It was discovered that LibSass incorrectly handled certain specially crafted sass file. An attacker could possibly use this issue to cause a denial of...

9.8CVSS6.6AI score0.04006EPSS
Exploits10References14
susecve
susecve
added 2023/08/26 8:9 a.m.4 views

SUSE CVE-2022-26592

Stack Overflow vulnerability in libsass 3.6.5 via the CompoundSelector::hasrealparentref function...

5.3CVSS7.1AI score0.00782EPSS
Exploits1References4
susecve
susecve
added 2023/08/26 8:8 a.m.4 views

SUSE CVE-2022-43358

Stack overflow vulnerability in astselectors.cpp: in function Sass::ComplexSelector::hasplaceholder in libsass:3.6.5-8-g210218, which can be exploited by attackers to cause a denial of service DoS...

5.3CVSS7AI score0.01252EPSS
Exploits1References4
susecve
susecve
added 2023/08/26 8:8 a.m.5 views

SUSE CVE-2022-43357

Stack overflow vulnerability in astselectors.cpp in function Sass::CompoundSelector::hasrealparentref in libsass:3.6.5-8-g210218, which can be exploited by attackers to causea denial of service DoS. Also affects the command line driver for libsass, sassc 3.6.2...

5.3CVSS7.2AI score0.01252EPSS
Exploits1References4
veracode
veracode
added 2023/08/24 9:21 a.m.20 views

Denial Of Service (DoS)

libsass.so is vulnerable to Denial Of Service DoS. The vulnerability exists in CompoundSelector::hasrealparentref at astselectors.cpp due to a stack overflow which allows an attacker to cause an application crash...

8.8CVSS6.9AI score0.00782EPSS
Exploits1References3Affected Software2
veracode
veracode
added 2023/08/24 8:39 a.m.15 views

Denial Of Service (DoS)

libsass.so is vulnerable to Denial Of Service DoS. The vulnerability exists in ComplexSelector::hasplaceholder at astselectors.cpp due to a stack overflow which allows an attacker to cause an application crash...

7.5CVSS6.9AI score0.01252EPSS
Exploits1References5Affected Software2
nvd
nvd
added 2023/08/22 7:16 p.m.17 views

CVE-2022-43357

Stack overflow vulnerability in astselectors.cpp in function Sass::CompoundSelector::hasrealparentref in libsass:3.6.5-8-g210218, which can be exploited by attackers to causea denial of service DoS. Also affects the command line driver for libsass, sassc 3.6.2...

7.5CVSS7.7AI score0.01252EPSS
Exploits1References3
attackerkb
attackerkb
added 2023/08/22 7:16 p.m.3 views

CVE-2022-43358

Stack overflow vulnerability in astselectors.cpp: in function Sass::ComplexSelector::hasplaceholder in libsass:3.6.5-8-g210218, which can be exploited by attackers to cause a denial of service DoS...

7.5CVSS5.8AI score0.01252EPSS
Exploits1References4
osv
osv
added 2023/08/22 7:16 p.m.6 views

AZL-44817 CVE-2022-43358 affecting package libsass for versions less than 3.6.6-1

Stack overflow vulnerability in astselectors.cpp: in function Sass::ComplexSelector::hasplaceholder in libsass:3.6.5-8-g210218, which can be exploited by attackers to cause a denial of service DoS...

7.5CVSS7.2AI score0.01252EPSS
Exploits1References1
attackerkb
attackerkb
added 2023/08/22 7:16 p.m.3 views

CVE-2022-43357

Stack overflow vulnerability in astselectors.cpp in function Sass::CompoundSelector::hasrealparentref in libsass:3.6.5-8-g210218, which can be exploited by attackers to causea denial of service DoS. Also affects the command line driver for libsass, sassc 3.6.2...

7.5CVSS5.8AI score0.01252EPSS
Exploits1References4
osv
osv
added 2023/08/22 7:16 p.m.9 views

AZL-43714 CVE-2022-43357 affecting package libsass 3.6.3-3

Stack overflow vulnerability in astselectors.cpp in function Sass::CompoundSelector::hasrealparentref in libsass:3.6.5-8-g210218, which can be exploited by attackers to causea denial of service DoS. Also affects the command line driver for libsass, sassc 3.6.2...

7.5CVSS7.2AI score0.01252EPSS
Exploits1References1
osv
osv
added 2023/08/22 7:16 p.m.10 views

AZL-43987 CVE-2022-43358 affecting package libsass 3.6.3-3

Stack overflow vulnerability in astselectors.cpp: in function Sass::ComplexSelector::hasplaceholder in libsass:3.6.5-8-g210218, which can be exploited by attackers to cause a denial of service DoS...

7.5CVSS7.2AI score0.01252EPSS
Exploits1References1
osv
osv
added 2023/08/22 7:16 p.m.5 views

CVE-2022-43358

Stack overflow vulnerability in astselectors.cpp: in function Sass::ComplexSelector::hasplaceholder in libsass:3.6.5-8-g210218, which can be exploited by attackers to cause a denial of service DoS...

7.5CVSS8.4AI score
Exploits0References3
osv
osv
added 2023/08/22 7:16 p.m.9 views

AZL-44079 CVE-2022-43357 affecting package libsass for versions less than 3.6.6-1

Stack overflow vulnerability in astselectors.cpp in function Sass::CompoundSelector::hasrealparentref in libsass:3.6.5-8-g210218, which can be exploited by attackers to causea denial of service DoS. Also affects the command line driver for libsass, sassc 3.6.2...

7.5CVSS7.2AI score0.01252EPSS
Exploits1References1
osv
osv
added 2023/08/22 7:16 p.m.1 views

DEBIAN-CVE-2022-43357

Stack overflow vulnerability in astselectors.cpp in function Sass::CompoundSelector::hasrealparentref in libsass:3.6.5-8-g210218, which can be exploited by attackers to causea denial of service DoS. Also affects the command line driver for libsass, sassc 3.6.2...

7.5CVSS7.3AI score0.01252EPSS
Exploits1References1
attackerkb
attackerkb
added 2023/08/22 7:16 p.m.3 views

CVE-2022-26592

Stack Overflow vulnerability in libsass 3.6.5 via the CompoundSelector::hasrealparentref function...

8.8CVSS5.9AI score0.00782EPSS
Exploits1References2
nvd
nvd
added 2023/08/22 7:16 p.m.13 views

CVE-2022-26592

Stack Overflow vulnerability in libsass 3.6.5 via the CompoundSelector::hasrealparentref function...

8.8CVSS8.7AI score0.00782EPSS
Exploits1References1
osv
osv
added 2023/08/22 7:16 p.m.10 views

AZL-44100 CVE-2022-26592 affecting package libsass for versions less than 3.6.6-1

Stack Overflow vulnerability in libsass 3.6.5 via the CompoundSelector::hasrealparentref function...

8.8CVSS7.4AI score0.00782EPSS
Exploits1References1
Rows per page
Query Builder