8 matches found
Azure Linux 3.0 Security Update: libsass (CVE-2022-43357)
The version of libsass installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-43357 advisory. - Stack overflow vulnerability in astselectors.cpp in function Sass::CompoundSelector::hasrealparentref in...
CVE-2022-43357 affecting package libsass for versions less than 3.6.6-1
CVE-2022-43357 affecting package libsass for versions less than 3.6.6-1. An upgraded version of the package is available that resolves this issue...
Linux Distros Unpatched Vulnerability : CVE-2022-43357
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Stack overflow vulnerability in astselectors.cpp in function Sass::CompoundSelector::hasrealparentref in libsass:3.6.5-8-g210218, which can be exploited by...
Important: libsass
Issue Overview: Stack Overflow vulnerability in libsass 3.6.5 via the CompoundSelector::hasrealparentref function. CVE-2022-26592 Stack overflow vulnerability in astselectors.cpp in function Sass::CompoundSelector::hasrealparentref in libsass:3.6.5-8-g210218, which can be exploited by attackers t...
Amazon Linux 2 : libsass (ALASMATE-DESKTOP1.X-2024-004)
The version of libsass installed on the remote host is prior to 3.6.4-3. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2MATE-DESKTOP1.X-2024-004 advisory. Stack Overflow vulnerability in libsass 3.6.5 via the CompoundSelector::hasrealparentref function...
SUSE SLES15 / openSUSE 15 Security Update : libsass (SUSE-SU-2023:4895-1)
The remote SUSE Linux SLES15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:4895-1 advisory. - CVE-2022-26592: Fixed Stack Overflow vulnerability in libsass 3.6.5 via the CompoundSelector:hasrealparentref function bsc12145...
SUSE-SU-2023:4895-1 Security update for libsass
This update for libsass fixes the following issues: - CVE-2022-26592: Fixed Stack Overflow vulnerability in libsass 3.6.5 via the CompoundSelector:hasrealparentref function bsc1214576 - CVE-2022-43358: Fixed Stack overflow vulnerability in astselectors.cpp bsc1214575. - CVE-2022-43357: Fixed Stac...
CVE-2022-43357
CVE-2022-43357 is a stack overflow vulnerability in libsass:3.6.5-8-g210218 (Sass::CompoundSelector::has_real_parent_ref) that can lead to denial of service. The issue also affects the sassc 3.6.2 CLI. Multiple Nessus/debian/openSUSE/SUSE/SUSE-derived advisories confirm the same flaw. Remediation...