VYPR

rpm package

suse/libsass&distro=SUSE Linux Enterprise Module for Package Hub 15 SP5

pkg:rpm/suse/libsass&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Package%20Hub%2015%20SP5

Vulnerabilities (3)

  • CVE-2022-43358Aug 22, 2023
    affected < 3.6.5-150200.4.10.1fixed 3.6.5-150200.4.10.1

    Stack overflow vulnerability in ast_selectors.cpp: in function Sass::ComplexSelector::has_placeholder in libsass:3.6.5-8-g210218, which can be exploited by attackers to cause a denial of service (DoS).

  • CVE-2022-43357Aug 22, 2023
    affected < 3.6.5-150200.4.10.1fixed 3.6.5-150200.4.10.1

    Stack overflow vulnerability in ast_selectors.cpp in function Sass::CompoundSelector::has_real_parent_ref in libsass:3.6.5-8-g210218, which can be exploited by attackers to causea denial of service (DoS). Also affects the command line driver for libsass, sassc 3.6.2.

  • CVE-2022-26592Aug 22, 2023
    affected < 3.6.5-150200.4.10.1fixed 3.6.5-150200.4.10.1

    Stack Overflow vulnerability in libsass 3.6.5 via the CompoundSelector::has_real_parent_ref function.