Bug ID 1054584
Summary VUL-0: CVE-2017-12962: libsass: There is a memory leak in libsass.
Classification openSUSE
Product openSUSE Distribution
Version Leap 42.2
Hardware Other
URL https://smash.suse.de/issue/190829/
OS Other
Status NEW
Severity Minor
Priority P5 - None
Component Other
Assignee cbosdonnat@suse.com
Reporter meissner@suse.com
QA Contact qa-bugs@suse.de
Found By Security Response Team
Blocker ---

rh#1482331

There are memory leaks in LibSass 3.4.5 triggered by deeply nested code, such
as
code with a long sequence of open parenthesis characters, leading to a remote
denial of service attack.

References:
https://bugzilla.redhat.com/show_bug.cgi?id=1482331
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-12962
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12962


You are receiving this mail because: