CVE-2017-11554

Published July 23rd, 2017

View on NVD ↗

CVSS v3

N/A

CVSS v2

MEDIUM

Affected

PROJECT

Description

There is a stack consumption vulnerability in the lex function in parser.hpp (as used in sassc) in LibSass 3.4.5. A crafted input will lead to a remote denial of service.

sass/libsass

A C/C++ implementation of a Sass compiler

GitHub

4.33K