567 matches found
Security Bulletin: IBM Watson Machine Learning Accelerator on Cloud Pak for Data is vunerable to libsass and node-sass vulnerabilities
Summary IBM Watson Machine Learning Accelerator on Cloud Pak for Data is vunerable to the dependencies in the opensource library libsass-3.5.5 and opennms-opennms-source-25.1.1-1 . These are fixed. Vulnerability Details CVEID:CVE-2018-11696 DESCRIPTION: LibSaas is vulnerable to a denial of servic...
Ubuntu 18.04 ESM : LibSass vulnerabilities (USN-4837-1)
The remote Ubuntu 18.04 ESM host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-4837-1 advisory. It was discovered that LibSass incorrectly handled certain specially crafted sass file. An attacker could possibly use this issue to cause a denial of...
SUSE CVE-2022-26592
Stack Overflow vulnerability in libsass 3.6.5 via the CompoundSelector::hasrealparentref function...
SUSE CVE-2022-43357
Stack overflow vulnerability in astselectors.cpp in function Sass::CompoundSelector::hasrealparentref in libsass:3.6.5-8-g210218, which can be exploited by attackers to causea denial of service DoS. Also affects the command line driver for libsass, sassc 3.6.2...
SUSE CVE-2022-43358
Stack overflow vulnerability in astselectors.cpp: in function Sass::ComplexSelector::hasplaceholder in libsass:3.6.5-8-g210218, which can be exploited by attackers to cause a denial of service DoS...
Denial Of Service (DoS)
libsass.so is vulnerable to Denial Of Service DoS. The vulnerability exists in CompoundSelector::hasrealparentref at astselectors.cpp due to a stack overflow which allows an attacker to cause an application crash...
Denial Of Service (DoS)
libsass.so is vulnerable to Denial Of Service DoS. The vulnerability exists in ComplexSelector::hasplaceholder at astselectors.cpp due to a stack overflow which allows an attacker to cause an application crash...
AZL-44079 CVE-2022-43357 affecting package libsass for versions less than 3.6.6-1
Stack overflow vulnerability in astselectors.cpp in function Sass::CompoundSelector::hasrealparentref in libsass:3.6.5-8-g210218, which can be exploited by attackers to causea denial of service DoS. Also affects the command line driver for libsass, sassc 3.6.2...
CVE-2022-43357
Stack overflow vulnerability in astselectors.cpp in function Sass::CompoundSelector::hasrealparentref in libsass:3.6.5-8-g210218, which can be exploited by attackers to causea denial of service DoS. Also affects the command line driver for libsass, sassc 3.6.2...
DEBIAN-CVE-2022-43357
Stack overflow vulnerability in astselectors.cpp in function Sass::CompoundSelector::hasrealparentref in libsass:3.6.5-8-g210218, which can be exploited by attackers to causea denial of service DoS. Also affects the command line driver for libsass, sassc 3.6.2...
AZL-44817 CVE-2022-43358 affecting package libsass for versions less than 3.6.6-1
Stack overflow vulnerability in astselectors.cpp: in function Sass::ComplexSelector::hasplaceholder in libsass:3.6.5-8-g210218, which can be exploited by attackers to cause a denial of service DoS...
CVE-2022-43357
Stack overflow vulnerability in astselectors.cpp in function Sass::CompoundSelector::hasrealparentref in libsass:3.6.5-8-g210218, which can be exploited by attackers to causea denial of service DoS. Also affects the command line driver for libsass, sassc 3.6.2...
AZL-43987 CVE-2022-43358 affecting package libsass 3.6.3-3
Stack overflow vulnerability in astselectors.cpp: in function Sass::ComplexSelector::hasplaceholder in libsass:3.6.5-8-g210218, which can be exploited by attackers to cause a denial of service DoS...
CVE-2022-43358
Stack overflow vulnerability in astselectors.cpp: in function Sass::ComplexSelector::hasplaceholder in libsass:3.6.5-8-g210218, which can be exploited by attackers to cause a denial of service DoS...
AZL-43714 CVE-2022-43357 affecting package libsass 3.6.3-3
Stack overflow vulnerability in astselectors.cpp in function Sass::CompoundSelector::hasrealparentref in libsass:3.6.5-8-g210218, which can be exploited by attackers to causea denial of service DoS. Also affects the command line driver for libsass, sassc 3.6.2...
CVE-2022-43358
Stack overflow vulnerability in astselectors.cpp: in function Sass::ComplexSelector::hasplaceholder in libsass:3.6.5-8-g210218, which can be exploited by attackers to cause a denial of service DoS...
CVE-2022-26592
Stack Overflow vulnerability in libsass 3.6.5 via the CompoundSelector::hasrealparentref function...
AZL-44100 CVE-2022-26592 affecting package libsass for versions less than 3.6.6-1
Stack Overflow vulnerability in libsass 3.6.5 via the CompoundSelector::hasrealparentref function...
AZL-43879 CVE-2022-26592 affecting package libsass 3.6.3-3
Stack Overflow vulnerability in libsass 3.6.5 via the CompoundSelector::hasrealparentref function...
AZL-32226 CVE-2022-26592 affecting package reaper for versions less than 3.1.1-9
Stack Overflow vulnerability in libsass 3.6.5 via the CompoundSelector::hasrealparentref function...