VYPR

libsass

by Sass

CVEs (3)

  • CVE-2018-11698HigJun 4, 2018
    risk 0.53cvss 8.1epss 0.02

    An issue was discovered in LibSass through 3.5.4. An out-of-bounds read of a memory region was found in the function Sass::handle_error which could be leveraged by an attacker to disclose information or manipulated to read from unmapped memory causing a denial of service.

  • CVE-2018-11693HigJun 4, 2018
    risk 0.53cvss 8.1epss 0.01

    An issue was discovered in LibSass through 3.5.4. An out-of-bounds read of a memory region was found in the function Sass::Prelexer::skip_over_scopes which could be leveraged by an attacker to disclose information or manipulated to read from unmapped memory causing a denial of…

  • CVE-2018-11695HigJun 4, 2018
    risk 0.00cvss 8.8epss 0.02

    An issue was discovered in LibSass <3.5.3. A NULL pointer dereference was found in the function Sass::Expand::operator which could be leveraged by an attacker to cause a denial of service (application crash) or possibly have unspecified other impact.