An issue exists in LibSass up to and including 3.5.4. An out-of-bounds read of a memory region was found in the function Sass::handle_error which could be leveraged by an malicious user to disclose information or manipulated to read from unmapped memory causing a denial of service.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
sass-lang libsass |