Debian Libsass vulnerabilities

CVE-2018-11695 [HIGH] CVE-2018-11695: libsass - An issue was discovered in LibSass <3.5.3. A NULL pointer dereference was found ... An issue was discovered in LibSass <3.5.3. A NULL pointer dereference was found in the function Sass::Expand::operator which could be leveraged by an attacker to cause a denial of service (application crash) or possibly have unspecified other impact. Scope: local bookworm: resolved (fixed in 3.5.4-1) bullseye: resolved (fixed in 3.5.4-1) forky: resolved (fixed in 3.

CVE-2018-20190 [MEDIUM] CVE-2018-20190: libsass - In LibSass 3.5.5, a NULL Pointer Dereference in the function Sass::Eval::operato... In LibSass 3.5.5, a NULL Pointer Dereference in the function Sass::Eval::operator()(Sass::Supports_Operator*) in eval.cpp may cause a Denial of Service (application crash) via a crafted sass input file. Scope: local bookworm: resolved (fixed in 3.5.5-4) bullseye: resolved (fixed in 3.5.5-4) forky: resolved (fixed in 3.5.5-4) sid: resolved (fixed in 3.5.5-4) trixie

CVE-2018-20821 [MEDIUM] CVE-2018-20821: libsass - The parsing component in LibSass through 3.5.5 allows attackers to cause a denia... The parsing component in LibSass through 3.5.5 allows attackers to cause a denial-of-service (uncontrolled recursion in Sass::Parser::parse_css_variable_value in parser.cpp). Scope: local bookworm: resolved (fixed in 3.6.3-1) bullseye: resolved (fixed in 3.6.3-1) forky: resolved (fixed in 3.6.3-1) sid: resolved (fixed in 3.6.3-1) trixie: resolved (fixed in 3.6.3-1

CVE-2018-20822 [MEDIUM] CVE-2018-20822: libsass - LibSass 3.5.4 allows attackers to cause a denial-of-service (uncontrolled recurs... LibSass 3.5.4 allows attackers to cause a denial-of-service (uncontrolled recursion in Sass::Complex_Selector::perform in ast.hpp and Sass::Inspect::operator in inspect.cpp). Scope: local bookworm: resolved (fixed in 3.6.3-1) bullseye: resolved (fixed in 3.6.3-1) forky: resolved (fixed in 3.6.3-1) sid: resolved (fixed in 3.6.3-1) trixie: resolved (fixed in 3.6.3-1

CVE-2017-11556 [HIGH] CVE-2017-11556: libsass - There is a stack consumption vulnerability in the Parser::advanceToNextToken fun... There is a stack consumption vulnerability in the Parser::advanceToNextToken function in parser.cpp in LibSass 3.4.5. A crafted input may lead to remote denial of service. Scope: local bookworm: resolved (fixed in 3.5.4-1) bullseye: resolved (fixed in 3.5.4-1) forky: resolved (fixed in 3.5.4-1) sid: resolved (fixed in 3.5.4-1) trixie: resolved (fixed in 3.5.4-1)

CVE-2017-11554 [HIGH] CVE-2017-11554: libsass - There is a stack consumption vulnerability in the lex function in parser.hpp (as... There is a stack consumption vulnerability in the lex function in parser.hpp (as used in sassc) in LibSass 3.4.5. A crafted input will lead to a remote denial of service. Scope: local bookworm: resolved (fixed in 3.5.4-1) bullseye: resolved (fixed in 3.5.4-1) forky: resolved (fixed in 3.5.4-1) sid: resolved (fixed in 3.5.4-1) trixie: resolved (fixed in 3.5.4-1)

CVE-2017-11555 [HIGH] CVE-2017-11555: libsass - There is an illegal address access in the Eval::operator function in eval.cpp in... There is an illegal address access in the Eval::operator function in eval.cpp in LibSass 3.4.5. A crafted input will lead to a remote denial of service. Scope: local bookworm: resolved (fixed in 3.5.4-1) bullseye: resolved (fixed in 3.5.4-1) forky: resolved (fixed in 3.5.4-1) sid: resolved (fixed in 3.5.4-1) trixie: resolved (fixed in 3.5.4-1)

CVE-2017-11608 [MEDIUM] CVE-2017-11608: libsass - There is a heap-based buffer over-read in the Sass::Prelexer::re_linebreak funct... There is a heap-based buffer over-read in the Sass::Prelexer::re_linebreak function in lexer.cpp in LibSass 3.4.5. A crafted input will lead to a remote denial of service attack. Scope: local bookworm: resolved (fixed in 3.4.6-1) bullseye: resolved (fixed in 3.4.6-1) forky: resolved (fixed in 3.4.6-1) sid: resolved (fixed in 3.4.6-1) trixie: resolved (fixed in 3.4