Critical severity9.8NVD Advisory· Published May 26, 2018· Updated Jun 17, 2026
CVE-2018-11499
CVE-2018-11499
Description
A use-after-free vulnerability exists in handle_error() in sass_context.cpp in LibSass 3.4.x and 3.5.x through 3.5.4 that could be leveraged to cause a denial of service (application crash) or possibly unspecified other impact.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
4- osv-coords4 versionspkg:rpm/opensuse/libsass&distro=openSUSE%20Leap%2015.0pkg:rpm/opensuse/libsass&distro=openSUSE%20Leap%2015.1pkg:rpm/suse/libsass&distro=SUSE%20Package%20Hub%2015pkg:rpm/suse/libsass&distro=SUSE%20Package%20Hub%2015%20SP1
< 3.6.1-lp151.3.3.1+ 3 more
- (no CPE)range: < 3.6.1-lp151.3.3.1
- (no CPE)range: < 3.6.1-lp151.3.3.1
- (no CPE)range: < 3.6.1-bp150.3.3.1
- (no CPE)range: < 3.6.1-bp151.4.3.1
Patches
Vulnerability mechanics
References
4News mentions
0No linked articles in our index yet.