CVE List

CVE-2019-18798

Moderate 6.5

LibSass before 3.6.3 allows a heap-based buffer over-read in Sass::weaveParents in ast_sel_weave.cpp.

Published November 6, 2019.

Affected software

Sass-lang Libsass

Reference links

Sign Up for Alerts