6 matches found
EUVD-2017-4484
Malware in sbrugna...
openSUSE Security Update : libsass (openSUSE-2017-1250)
This update for libsass fixes the following DoS vulnerabilities : - CVE-2017-11554: Stack consumption vulnerability allowed remote DoS via crafted input 1050148 - CVE-2017-11555: Illegal address access in Eval::operator allowed remote DoS via crafted input boo1050149 - CVE-2017-11556: Stack...
Design/Logic Flaw
There is an illegal address access in Sass::Eval::operator in eval.cpp of LibSass 3.4.5, leading to a remote denial of service attack. NOTE: this is similar to CVE-2017-11555 but remains exploitable after the vendor's CVE-2017-11555 fix available from GitHub after 2017-07-24...
CVE-2017-11555
There is an illegal address access in the Eval::operator function in eval.cpp in LibSass 3.4.5. A crafted input will lead to a remote denial of service...
CVE-2017-11555
CVE-2017-11555 refers to an illegal address access in LibSass 3.4.5, specifically in Sass::Eval::operator() (eval.cpp). A crafted input can cause a remote denial of service. Connected sources indicate this family of DoS issues is addressed in later vendor advisories (e.g., openSUSE-2017-1250) whi...
CVE-2017-11555
There is an illegal address access in the Eval::operator function in eval.cpp in LibSass 3.4.5. A crafted input will lead to a remote denial of service...