568 matches found
SUSE-SU-2023:4895-1 Security update for libsass
This update for libsass fixes the following issues: - CVE-2022-26592: Fixed Stack Overflow vulnerability in libsass 3.6.5 via the CompoundSelector:hasrealparentref function bsc1214576 - CVE-2022-43358: Fixed Stack overflow vulnerability in astselectors.cpp bsc1214575. - CVE-2022-43357: Fixed Stac...
Security Bulletin: IBM Watson Machine Learning Accelerator on Cloud Pak for Data is vunerable to libsass and node-sass vulnerabilities
Summary IBM Watson Machine Learning Accelerator on Cloud Pak for Data is vunerable to the dependencies in the opensource library libsass-3.5.5 and opennms-opennms-source-25.1.1-1 . These are fixed. Vulnerability Details CVEID:CVE-2018-11696 DESCRIPTION: LibSaas is vulnerable to a denial of servic...
Ubuntu 18.04 ESM : LibSass vulnerabilities (USN-4837-1)
The remote Ubuntu 18.04 ESM host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-4837-1 advisory. It was discovered that LibSass incorrectly handled certain specially crafted sass file. An attacker could possibly use this issue to cause a denial of...
SUSE CVE-2022-26592
Stack Overflow vulnerability in libsass 3.6.5 via the CompoundSelector::hasrealparentref function...
SUSE CVE-2022-43358
Stack overflow vulnerability in astselectors.cpp: in function Sass::ComplexSelector::hasplaceholder in libsass:3.6.5-8-g210218, which can be exploited by attackers to cause a denial of service DoS...
SUSE CVE-2022-43357
Stack overflow vulnerability in astselectors.cpp in function Sass::CompoundSelector::hasrealparentref in libsass:3.6.5-8-g210218, which can be exploited by attackers to causea denial of service DoS. Also affects the command line driver for libsass, sassc 3.6.2...
Denial Of Service (DoS)
libsass.so is vulnerable to Denial Of Service DoS. The vulnerability exists in CompoundSelector::hasrealparentref at astselectors.cpp due to a stack overflow which allows an attacker to cause an application crash...
Denial Of Service (DoS)
libsass.so is vulnerable to Denial Of Service DoS. The vulnerability exists in ComplexSelector::hasplaceholder at astselectors.cpp due to a stack overflow which allows an attacker to cause an application crash...
CVE-2022-43357
Stack overflow vulnerability in astselectors.cpp in function Sass::CompoundSelector::hasrealparentref in libsass:3.6.5-8-g210218, which can be exploited by attackers to causea denial of service DoS. Also affects the command line driver for libsass, sassc 3.6.2...
CVE-2022-43358
Stack overflow vulnerability in astselectors.cpp: in function Sass::ComplexSelector::hasplaceholder in libsass:3.6.5-8-g210218, which can be exploited by attackers to cause a denial of service DoS...
AZL-44817 CVE-2022-43358 affecting package libsass for versions less than 3.6.6-1
Stack overflow vulnerability in astselectors.cpp: in function Sass::ComplexSelector::hasplaceholder in libsass:3.6.5-8-g210218, which can be exploited by attackers to cause a denial of service DoS...
CVE-2022-43357
Stack overflow vulnerability in astselectors.cpp in function Sass::CompoundSelector::hasrealparentref in libsass:3.6.5-8-g210218, which can be exploited by attackers to causea denial of service DoS. Also affects the command line driver for libsass, sassc 3.6.2...
AZL-43714 CVE-2022-43357 affecting package libsass 3.6.3-3
Stack overflow vulnerability in astselectors.cpp in function Sass::CompoundSelector::hasrealparentref in libsass:3.6.5-8-g210218, which can be exploited by attackers to causea denial of service DoS. Also affects the command line driver for libsass, sassc 3.6.2...
AZL-43987 CVE-2022-43358 affecting package libsass 3.6.3-3
Stack overflow vulnerability in astselectors.cpp: in function Sass::ComplexSelector::hasplaceholder in libsass:3.6.5-8-g210218, which can be exploited by attackers to cause a denial of service DoS...
CVE-2022-43358
Stack overflow vulnerability in astselectors.cpp: in function Sass::ComplexSelector::hasplaceholder in libsass:3.6.5-8-g210218, which can be exploited by attackers to cause a denial of service DoS...
AZL-44079 CVE-2022-43357 affecting package libsass for versions less than 3.6.6-1
Stack overflow vulnerability in astselectors.cpp in function Sass::CompoundSelector::hasrealparentref in libsass:3.6.5-8-g210218, which can be exploited by attackers to causea denial of service DoS. Also affects the command line driver for libsass, sassc 3.6.2...
DEBIAN-CVE-2022-43357
Stack overflow vulnerability in astselectors.cpp in function Sass::CompoundSelector::hasrealparentref in libsass:3.6.5-8-g210218, which can be exploited by attackers to causea denial of service DoS. Also affects the command line driver for libsass, sassc 3.6.2...
CVE-2022-26592
Stack Overflow vulnerability in libsass 3.6.5 via the CompoundSelector::hasrealparentref function...
CVE-2022-26592
Stack Overflow vulnerability in libsass 3.6.5 via the CompoundSelector::hasrealparentref function...
AZL-44100 CVE-2022-26592 affecting package libsass for versions less than 3.6.6-1
Stack Overflow vulnerability in libsass 3.6.5 via the CompoundSelector::hasrealparentref function...