567 matches found
CBL Mariner 2.0 Security Update: libsass / reaper (CVE-2022-26592)
The version of libsass / reaper installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-26592 advisory. - Stack Overflow vulnerability in libsass 3.6.5 via the CompoundSelector::hasrealparentref function...
Stack overflow vulnerability in ast_selectors.cpp in function Sass::CompoundSelector::has_real_parent_ref in libsass:3.6.5-8-g210218, which can be exploited by attackers to causea denial of service (DoS). Also affects the command line driver for libsass, sassc 3.6.2.
...
Stack overflow vulnerability in ast_selectors.cpp: in function Sass::ComplexSelector::has_placeholder in libsass:3.6.5-8-g210218, which can be exploited by attackers to cause a denial of service (DoS).
...
Linux Distros Unpatched Vulnerability : CVE-2022-26592
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Stack Overflow vulnerability in libsass 3.6.5 via the CompoundSelector::hasrealparentref function. CVE-2022-26592 Note that Nessus relies on the presence of the...
Linux Distros Unpatched Vulnerability : CVE-2022-43357
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Stack overflow vulnerability in astselectors.cpp in function Sass::CompoundSelector::hasrealparentref in libsass:3.6.5-8-g210218, which can be exploited by...
Linux Distros Unpatched Vulnerability : CVE-2018-19826
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In inspect.cpp in LibSass 3.5.5, a high memory footprint caused by an endless loop containing a Sass::Inspect::operatorSass::StringQuoted stack frame may cause ...
OPENSUSE-SU-2024:13516-1 libsass-3_6_5-1-3.6.5-2.1 on GA media
These are all security issues fixed in the libsass-365-1-3.6.5-2.1 package on the GA media of openSUSE Tumbleweed...
OPENSUSE-SU-2024:10988-1 libsass-3_6_5-1-3.6.5-1.2 on GA media
These are all security issues fixed in the libsass-365-1-3.6.5-1.2 package on the GA media of openSUSE Tumbleweed...
RHEL 8 : libsass (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - libsass: Infinite loop in Sass::Inspect::operator function resulting in a denial of service CVE-2018-19826 Note tha...
RHEL 8 : libsass (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - libsass: Infinite loop in Sass::Inspect::operator function resulting in a denial of service CVE-2018-19826 Note tha...
BIT-SASS-2022-26592
Stack Overflow vulnerability in libsass 3.6.5 via the CompoundSelector::hasrealparentref function...
BIT-SASS-2022-43357
Stack overflow vulnerability in astselectors.cpp in function Sass::CompoundSelector::hasrealparentref in libsass:3.6.5-8-g210218, which can be exploited by attackers to causea denial of service DoS. Also affects the command line driver for libsass, sassc 3.6.2...
BIT-SASS-2022-43358
Stack overflow vulnerability in astselectors.cpp: in function Sass::ComplexSelector::hasplaceholder in libsass:3.6.5-8-g210218, which can be exploited by attackers to cause a denial of service DoS...
OESA-2024-1049 libsass security update
Libsass is a Sass CSS precompiler which is ported for C/C++. This version is more efficient and portable than the original Ruby version. Keeping light and sample is its degisn philosophy which makes it more easier to be built and integrated with a immense amount of platforms and languages...
Important: libsass
Issue Overview: Stack Overflow vulnerability in libsass 3.6.5 via the CompoundSelector::hasrealparentref function. CVE-2022-26592 Stack overflow vulnerability in astselectors.cpp in function Sass::CompoundSelector::hasrealparentref in libsass:3.6.5-8-g210218, which can be exploited by attackers t...
Amazon Linux 2 : libsass (ALASMATE-DESKTOP1.X-2024-004)
The version of libsass installed on the remote host is prior to 3.6.4-3. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2MATE-DESKTOP1.X-2024-004 advisory. Stack Overflow vulnerability in libsass 3.6.5 via the CompoundSelector::hasrealparentref function...
OESA-2024-1018 libsass security update
Libsass is a Sass CSS precompiler which is ported for C/C++. This version is more efficient and portable than the original Ruby version. Keeping light and sample is its degisn philosophy which makes it more easier to be built and integrated with a immense amount of platforms and languages...
Stack Overflow vulnerability in libsass 3.6.5 via the CompoundSelector::has_real_parent_ref function.
...
SUSE SLES15 / openSUSE 15 Security Update : libsass (SUSE-SU-2023:4895-1)
The remote SUSE Linux SLES15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:4895-1 advisory. - CVE-2022-26592: Fixed Stack Overflow vulnerability in libsass 3.6.5 via the CompoundSelector:hasrealparentref function bsc12145...
SUSE-SU-2023:4895-1 Security update for libsass
This update for libsass fixes the following issues: - CVE-2022-26592: Fixed Stack Overflow vulnerability in libsass 3.6.5 via the CompoundSelector:hasrealparentref function bsc1214576 - CVE-2022-43358: Fixed Stack overflow vulnerability in astselectors.cpp bsc1214575. - CVE-2022-43357: Fixed Stac...