CVE-2017-11554

Опубликовано: 23 июл. 2017

Источник: ubuntu

Приоритет: medium

EPSS Низкий

CVSS2: 5

CVSS3: 7.5

Описание

There is a stack consumption vulnerability in the lex function in parser.hpp (as used in sassc) in LibSass 3.4.5. A crafted input will lead to a remote denial of service.

Релиз	Статус	Примечание
artful	ignored	end of life
bionic	ignored	end of standard support, was needed
cosmic	ignored	end of life
devel	not-affected	3.4.8-1
disco	not-affected	3.4.8-1
eoan	not-affected	3.4.8-1
esm-apps/bionic	needed
esm-apps/focal	not-affected	3.4.8-1
esm-apps/jammy	not-affected	3.4.8-1
esm-apps/noble	not-affected	3.4.8-1

Показывать по

Ссылки на источники

EPSS

Процентиль: 68%

0.00559

Низкий

5 Medium

CVSS2

7.5 High

CVSS3

Связанные уязвимости

CVE-2017-11554

CVSS3: 7.5

nvd

больше 8 лет назад

There is a stack consumption vulnerability in the lex function in parser.hpp (as used in sassc) in LibSass 3.4.5. A crafted input will lead to a remote denial of service.

CVE-2017-11554

CVSS3: 7.5

debian

больше 8 лет назад

There is a stack consumption vulnerability in the lex function in pars ...

GHSA-qqjx-qv79-g2q3

CVSS3: 7.5

github

больше 3 лет назад

There is a stack consumption vulnerability in the lex function in parser.hpp (as used in sassc) in LibSass 3.4.5. A crafted input will lead to a remote denial of service.

openSUSE-SU-2017:2939-1

suse-cvrf

больше 8 лет назад

Security update for libsass

EPSS

Процентиль: 68%

0.00559

Низкий

5 Medium

CVSS2

7.5 High

CVSS3

CVE-2017-11554

Описание

Пакет libsass

Ссылки на источники

Связанные уязвимости