In LibSass 3.5-stable, there is an illegal address access at Sass::Eval::operator that will lead to a DoS attack.
References
Link | Resource |
---|---|
https://bugzilla.redhat.com/show_bug.cgi?id=1643760 | Exploit Issue Tracking Third Party Advisory |
Configurations
Information
Published : 2018-11-12 11:29
Updated : 2020-08-24 10:37
NVD link : CVE-2018-19219
Mitre link : CVE-2018-19219
JSON object : View
CWE
CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
Products Affected
sass-lang
- libsass