openSUSE 15 Security Update : libsass (SUSE-SU-2023:4895-1)

The remote openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:4895-1 advisory. - Stack Overflow vulnerability in libsass 3.6.5 via the CompoundSelector::hasrealparentref function. CVE-2022-26592 - Stack overflow vulnerability in...

AZL-44079 CVE-2022-43357 affecting package libsass for versions less than 3.6.6-1

Stack overflow vulnerability in astselectors.cpp in function Sass::CompoundSelector::hasrealparentref in libsass:3.6.5-8-g210218, which can be exploited by attackers to causea denial of service DoS. Also affects the command line driver for libsass, sassc 3.6.2...