[Forgot Password]
Login  Register Subscribe

30479

 
 

423868

 
 

249461

 
 

909

 
 

195508

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
OVAL

CVE-2017-12963 -- libsass

ID: oval:org.secpod.oval:def:2000491Date: (C)2019-06-02   (M)2023-12-20
Class: VULNERABILITYFamily: unix




There is an illegal address access in Sass::Eval::operator in eval.cpp of LibSass 3.4.5, leading to a remote denial of service attack. NOTE: this is similar to CVE-2017-11555 but remains exploitable after the vendor"s CVE-2017-11555 fix .

Platform:
Debian 9.x
Product:
libsass-dev
Reference:
CVE-2017-12963
CVE    1
CVE-2017-12963
CPE    2
cpe:/o:debian:debian_linux:9.x
cpe:/a:libsass:libsass-dev

© SecPod Technologies