In LibSass before 3.5.5, the function handle_error in sass_context.cpp allows malicious users to cause a denial-of-service resulting from a heap-based buffer over-read via a crafted sass file.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
sass-lang libsass |