In LibSass 3.5.5, a NULL Pointer Dereference in the function Sass::Selector_List::populate_extends in SharedPtr.hpp (used by ast.cpp and ast_selectors.cpp) may cause a Denial of Service (application crash) via a crafted sass input file.

...

LibSass Null Pointer Dereference Vulnerability

LibSass is the C/C++ port of the Sass engine. A null pointer dereference vulnerability exists in the Sass::SelectorList::populateextends function in SharedPtr.hpp in LibSass 3.5.5. An attacker could use this vulnerability to cause a denial of service application crash via a specially crafted sass...