64 matches found
CVE-2017-11608
There is a heap-based buffer over-read in the Sass::Prelexer::relinebreak function in lexer.cpp in LibSass 3.4.5. A crafted input will lead to a remote denial of service attack...
DEBIAN-CVE-2017-11608
There is a heap-based buffer over-read in the Sass::Prelexer::relinebreak function in lexer.cpp in LibSass 3.4.5. A crafted input will lead to a remote denial of service attack...
UBUNTU-CVE-2017-11608
There is a heap-based buffer over-read in the Sass::Prelexer::relinebreak function in lexer.cpp in LibSass 3.4.5. A crafted input will lead to a remote denial of service attack...
LibSass: heap-buffer-overflow (read outside of buffer) in Sass::Prelexer::exactly<(char)92>(char const*) - libsass/src/lexer.hpp:92
Built with afl-clang-fast from git source 5909ba5. Feeding a file that contains nothing but '\ to sassc triggers this flaw. ==22006==ERROR: AddressSanitizer: heap-buffer-overflow on address 0x60200000ef93 at pc 0x000000907c6a bp 0x7fff656d9430 sp 0x7fff656d9428 READ of size 1 at 0x60200000ef93...