Lucene search
K

5 matches found

OSV
OSV
added 2018/12/04 9:29 a.m.2 views

DEBIAN-CVE-2018-19839

In LibSass prior to 3.5.5, the function handleerror in sasscontext.cpp allows attackers to cause a denial-of-service resulting from a heap-based buffer over-read via a crafted sass file...

6.5CVSS8.8AI score0.02156EPSS
Exploits1References1
CNVD
CNVD
added 2018/12/04 12:0 a.m.4 views

LibSass Denial of Service Vulnerability (CNVD-2019-06790)

LibSass is an open source written in C using Sass CSS extension language parser . A security vulnerability exists in the 'handleerror' function of the sasscontext.cpp file in LibSass versions prior to 3.5.5. An attacker can exploit this vulnerability to cause a denial of service with the help of ...

6.5CVSS8.9AI score0.02156EPSS
Exploits1References1
CNVD
CNVD
added 2018/05/28 12:0 a.m.4 views

LibSass Memory Misreference Vulnerability

LibSass is an open source written in C using Sass CSS extension language parser . A memory misreference vulnerability exists in the 'handleerror' function in the sasscontext.cpp file in LibSass versions 3.4.x and 3.5.x through 3.5.4. An attacker could exploit this vulnerability to cause a denial ...

9.8CVSS6.8AI score0.04006EPSS
Exploits0References1
OSV
OSV
added 2018/05/26 8:29 p.m.3 views

UBUNTU-CVE-2018-11499

A use-after-free vulnerability exists in handleerror in sasscontext.cpp in LibSass 3.4.x and 3.5.x through 3.5.4 that could be leveraged to cause a denial of service application crash or possibly unspecified other impact...

9.8CVSS7.3AI score0.04006EPSS
Exploits0References4
OSV
OSV
added 2017/06/29 11:29 p.m.3 views

UBUNTU-CVE-2017-10687

In LibSass 3.4.5, there is a heap-based buffer over-read in the function jsonmkstream in sasscontext.cpp. A crafted input will lead to a remote denial of service attack...

7.5CVSS7.3AI score0.01758EPSS
Exploits0References2
Rows per page
Query Builder