3 matches found
openSUSE Security Update : libsass (openSUSE-2017-1250)
This update for libsass fixes the following DoS vulnerabilities : - CVE-2017-11554: Stack consumption vulnerability allowed remote DoS via crafted input 1050148 - CVE-2017-11555: Illegal address access in Eval::operator allowed remote DoS via crafted input boo1050149 - CVE-2017-11556: Stack...
CVE-2017-11608
There is a heap-based buffer over-read in the Sass::Prelexer::relinebreak function in lexer.cpp in LibSass 3.4.5. A crafted input will lead to a remote denial of service attack...
CVE-2017-11608
CVE-2017-11608 corresponds to LibSass 3.4.5 and describes a heap-based buffer over-read in Sass::Prelexer::re_linebreak, exploitable via crafted input to cause remote denial of service. Multiple connected sources corroborate a DoS impact and provide patch guidance in vendor advisories. IBM’s bull...