Filter
IBM Data Virtualization on Cloud Pak for DataUse After Free
8.8
First published (updated )
IBM Data Virtualization on Cloud Pak for DataNull Pointer Dereference
8.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
libsassStack Overflow vulnerability in libsass 3.6.5 via the CompoundSelector::has_real_parent_ref function…
8.8
First published (updated )
IBM Data Virtualization on Cloud Pak for DataAn issue was discovered in LibSass through 3.5.4. An out-of-bounds read of a memory region was found…
8.1
First published (updated )
libsassAn issue was discovered in LibSass through 3.5.4. An out-of-bounds read of a memory region was found…
8.1
First published (updated )
libsassAn issue was discovered in LibSass through 3.5.4. An out-of-bounds read of a memory region was found…
8.1
First published (updated )
libsassThere is a stack consumption issue in LibSass 3.4.5 that is triggered in the function Sass::Eval::op…
7.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
libsassThere is a stack consumption vulnerability in the Parser::advanceToNextToken function in parser.cpp …
7.5
First published (updated )
libsassThere is a stack consumption vulnerability in the lex function in parser.hpp (as used in sassc) in L…
7.5
First published (updated )
libsassThere is a heap based buffer over-read in lexer.hpp of LibSass 3.4.5. A crafted input will lead to a…
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
libsassIn LibSass 3.4.5, there is a heap-based buffer over-read in the function json_mkstream() in sass_con…
7.5
First published (updated )
libsassThere is an illegal address access in Sass::Eval::operator() in eval.cpp of LibSass 3.4.5, leading t…
7.5
First published (updated )
libsassThere are memory leaks in LibSass 3.4.5 triggered by deeply nested code, such as code with a long se…
7.5
First published (updated )
libsassStack overflow vulnerability in ast_selectors.cpp: in function Sass::ComplexSelector::has_placeholde…
7.5
First published (updated )
libsassStack overflow vulnerability in ast_selectors.cpp in function Sass::CompoundSelector::has_real_paren…
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
libsassIn LibSass prior to 3.5.5, functions inside ast.cpp for IMPLEMENT_AST_OPERATORS expansion allow atta…
6.5
First published (updated )
IBM Data Virtualization on Cloud Pak for DataNull Pointer Dereference
6.5
First published (updated )
libsassIn LibSass prior to 3.5.5, Sass::Eval::operator()(Sass::Binary_Expression*) inside eval.cpp allows a…
6.5
First published (updated )
IBM Data Virtualization on Cloud Pak for DataIn LibSass prior to 3.5.5, the function handle_error in sass_context.cpp allows attackers to cause a…
6.5
First published (updated )
libsassIn inspect.cpp in LibSass 3.5.5, a high memory footprint caused by an endless loop (containing a Sas…
6.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
libsassIn LibSass 3.5-stable, there is an illegal address access at Sass::Parser::parse_css_variable_value_…
6.5
First published (updated )
libsassLibSass 3.5.4 allows attackers to cause a denial-of-service (uncontrolled recursion in Sass::Complex…
6.5
First published (updated )
IBM Data Virtualization on Cloud Pak for DataThe parsing component in LibSass through 3.5.5 allows attackers to cause a denial-of-service (uncont…
6.5
First published (updated )
libsassThere is a heap-based buffer over-read in the Sass::Prelexer::re_linebreak function in lexer.cpp in …
6.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.