This repository has been archived by the owner on Feb 17, 2022. It is now read-only.
CVE-2018-11696 (High) detected in libsass-3.3.6 #76
Labels
security vulnerability
Security vulnerability detected by WhiteSource
CVE-2018-11696 - High Severity Vulnerability
A C/C++ implementation of a Sass compiler
Library home page: https://github.com/sass/libsass.git
Found in HEAD commit: 7b03fb2200fb1eb713725cfa9c8c06f9f3af3b2a
* The source files were matched to this source library based on a best effort match. Source libraries are selected from a list of probable public libraries.
An issue was discovered in LibSass through 3.5.4. A NULL pointer dereference was found in the function Sass::Inspect::operator which could be leveraged by an attacker to cause a denial of service (application crash) or possibly have unspecified other impact.
Publish Date: 2018-06-04
URL: CVE-2018-11696
Base Score Metrics:
Type: Upgrade version
Origin: sass/libsass#2687
Release Date: 2019-08-29
Fix Resolution: LibSass - 3.6.0
Step up your Open Source Security Game with WhiteSource here
The text was updated successfully, but these errors were encountered: