The parsing component in LibSass up to and including 3.5.5 allows malicious users to cause a denial-of-service (uncontrolled recursion in Sass::Parser::parse_css_variable_value in parser.cpp).
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
sass-lang libsass |