Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

There is a stack-overflow in sassc of the libsass library #2445

Closed
abompard opened this issue Jul 18, 2017 · 4 comments

Comments

Projects
None yet
4 participants
@abompard
Copy link

commented Jul 18, 2017

This was reported here: https://bugzilla.redhat.com/show_bug.cgi?id=1471780
In this Bugzilla ticket you will find all the information and the code to reproduce the error.

@saper

This comment has been minimized.

Copy link
Member

commented Jul 19, 2017

Which version of libsass has been used?

@abompard

This comment has been minimized.

Copy link
Author

commented Jul 24, 2017

Version 3.4.1

(sorry for not replying sooner)

@mgreter

This comment has been minimized.

Copy link
Contributor

commented Jul 25, 2017

Can you try it again with latest master?! I believe this has been fixed by 7664114. Thanks!

I get with master:

Error: Code too deeply neested
        on line 1 of POC4

@mgreter mgreter added the Bug - Maybe label Jul 25, 2017

@mgreter mgreter closed this Nov 10, 2017

@xi

This comment has been minimized.

Copy link

commented Jun 5, 2019

Assigned CVE-2017-11554

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
You can’t perform that action at this time.