rpm package
suse/libsass&distro=SUSE Linux Enterprise Module for Package Hub 15 SP4
pkg:rpm/suse/libsass&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Package%20Hub%2015%20SP4
Vulnerabilities (3)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2022-43358 | — | < 3.6.5-150200.4.10.1 | 3.6.5-150200.4.10.1 | Aug 22, 2023 | Stack overflow vulnerability in ast_selectors.cpp: in function Sass::ComplexSelector::has_placeholder in libsass:3.6.5-8-g210218, which can be exploited by attackers to cause a denial of service (DoS). | ||
| CVE-2022-43357 | — | < 3.6.5-150200.4.10.1 | 3.6.5-150200.4.10.1 | Aug 22, 2023 | Stack overflow vulnerability in ast_selectors.cpp in function Sass::CompoundSelector::has_real_parent_ref in libsass:3.6.5-8-g210218, which can be exploited by attackers to causea denial of service (DoS). Also affects the command line driver for libsass, sassc 3.6.2. | ||
| CVE-2022-26592 | — | < 3.6.5-150200.4.10.1 | 3.6.5-150200.4.10.1 | Aug 22, 2023 | Stack Overflow vulnerability in libsass 3.6.5 via the CompoundSelector::has_real_parent_ref function. |
- CVE-2022-43358Aug 22, 2023affected < 3.6.5-150200.4.10.1fixed 3.6.5-150200.4.10.1
Stack overflow vulnerability in ast_selectors.cpp: in function Sass::ComplexSelector::has_placeholder in libsass:3.6.5-8-g210218, which can be exploited by attackers to cause a denial of service (DoS).
- CVE-2022-43357Aug 22, 2023affected < 3.6.5-150200.4.10.1fixed 3.6.5-150200.4.10.1
Stack overflow vulnerability in ast_selectors.cpp in function Sass::CompoundSelector::has_real_parent_ref in libsass:3.6.5-8-g210218, which can be exploited by attackers to causea denial of service (DoS). Also affects the command line driver for libsass, sassc 3.6.2.
- CVE-2022-26592Aug 22, 2023affected < 3.6.5-150200.4.10.1fixed 3.6.5-150200.4.10.1
Stack Overflow vulnerability in libsass 3.6.5 via the CompoundSelector::has_real_parent_ref function.