Lucene search
Redhat.comRH:CVE-2018-19838HistoryMay 14, 2019 - 12:09 p.m.
CVE-2018-19838
2019-05-1412:09:55
redhat.com
access.redhat.com
12
EPSS
0.003
Percentile
68.5%
In LibSass prior to 3.5.5, functions inside ast.cpp for IMPLEMENT_AST_OPERATORS expansion allow attackers to cause a denial-of-service resulting from stack consumption via a crafted sass file, as demonstrated by recursive calls involving clone(), cloneChildren(), and copy().
Related
debiancve
debiancve
CVE-2018-19838
2018-12-04 09:29:00
osv
osv
CVE-2018-19838
2018-12-04 09:29:00
cvelist
cvelist
CVE-2018-19838
2018-12-04 09:00:00
cve
cve
CVE-2018-19838
2018-12-04 09:29:00
prion
prion
Design/Logic Flaw
2018-12-04 09:29:00
ubuntucve
ubuntucve
CVE-2018-19838
2018-12-04 00:00:00
nvd
nvd
CVE-2018-19838
2018-12-04 09:29:00
mageia
mageia
Updated libsass packages fix security vulnerabilities
2020-01-28 10:52:40
ibm
ibm
Security Bulletin: Open Source Dependency Vulnerability
2023-05-15 17:51:03
Security Bulletin: OSS security Scan issues for Concerto installer.
2020-12-08 06:37:17
Security Bulletin: Open Source Security issues for NPS console.
2020-12-15 07:03:03
suse
suse
Security update for libsass (moderate)
2019-08-14 00:00:00
Security update for libsass (moderate)
2019-07-23 00:00:00
Security update for libsass (moderate)
2019-07-24 00:00:00
nessus
nessus
openSUSE Security Update : libsass (openSUSE-2019-1791)
2019-07-24 00:00:00
openvas
openvas
Mageia: Security Advisory (MGASA-2020-0049)
2022-01-28 00:00:00
openSUSE: Security Advisory for libsass (openSUSE-SU-2019:1791-1)
2019-07-24 00:00:00