VYPR

Bitnami package

sass

pkg:bitnami/sass

Vulnerabilities (3)

  • CVE-2022-43358Aug 22, 2023
    affected >= 3.6.5-8-g210218, < 3.6.5fixed 3.6.5

    Stack overflow vulnerability in ast_selectors.cpp: in function Sass::ComplexSelector::has_placeholder in libsass:3.6.5-8-g210218, which can be exploited by attackers to cause a denial of service (DoS).

  • CVE-2022-43357Aug 22, 2023
    affected >= 3.6.5-8-g210218, < 3.6.5fixed 3.6.5

    Stack overflow vulnerability in ast_selectors.cpp in function Sass::CompoundSelector::has_real_parent_ref in libsass:3.6.5-8-g210218, which can be exploited by attackers to causea denial of service (DoS). Also affects the command line driver for libsass, sassc 3.6.2.

  • CVE-2022-26592Aug 22, 2023
    affected >= 3.6.5, < 3.6.6fixed 3.6.6

    Stack Overflow vulnerability in libsass 3.6.5 via the CompoundSelector::has_real_parent_ref function.