GHSA-x2cj-w5c5-j878

Опубликовано: 13 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 7.5

Описание

There is a stack consumption vulnerability in the Parser::advanceToNextToken function in parser.cpp in LibSass 3.4.5. A crafted input may lead to remote denial of service.

Ссылки

EPSS

Процентиль: 60%

0.00401

Низкий

7.5 High

CVSS3

CVE ID

CVE-2017-11556

Дефекты

CWE-674

Связанные уязвимости

CVE-2017-11556

CVSS3: 7.5

ubuntu

больше 8 лет назад

There is a stack consumption vulnerability in the Parser::advanceToNextToken function in parser.cpp in LibSass 3.4.5. A crafted input may lead to remote denial of service.

CVE-2017-11556

CVSS3: 7.5

nvd

больше 8 лет назад

There is a stack consumption vulnerability in the Parser::advanceToNextToken function in parser.cpp in LibSass 3.4.5. A crafted input may lead to remote denial of service.

CVE-2017-11556

CVSS3: 7.5

debian

больше 8 лет назад

There is a stack consumption vulnerability in the Parser::advanceToNex ...

openSUSE-SU-2017:2939-1

suse-cvrf

больше 8 лет назад

Security update for libsass

EPSS

Процентиль: 60%

0.00401

Низкий

7.5 High

CVSS3

CVE ID

CVE-2017-11556

Дефекты

CWE-674