Libsass@3.5.5 Security Vulnerabilities and Issues — Libsass@3.5.5 CVE List

Lucene search

Sass-langLibsass3.5.5

3 matches found

CVE•added 2019/01/14 10:29 p.m.•136 views

CVE-2019-6286

In LibSass 3.5.5, a heap-based buffer over-read exists in Sass::Prelexer::skip_over_scopes in prelexer.hpp when called from Sass::Parser::parse_import(), a similar issue to CVE-2018-11693.

6.5CVSS6.9AI score0.00398EPSS

CVE•added 2019/01/14 10:29 p.m.•126 views

CVE-2019-6284

In LibSass 3.5.5, a heap-based buffer over-read exists in Sass::Prelexer::alternatives in prelexer.hpp.

6.5CVSS6.5AI score0.00223EPSS

CVE•added 2019/01/14 10:29 p.m.•123 views

CVE-2019-6283

In LibSass 3.5.5, a heap-based buffer over-read exists in Sass::Prelexer::parenthese_scope in prelexer.hpp.

6.5CVSS6.5AI score0.00394EPSS