Use-After-Free Vulnerability in handle_error() in LibSass

Use-After-Free Vulnerability in handle_error() in LibSass

CVE-2018-11499 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

A use-after-free vulnerability exists in handle_error() in sass_context.cpp in LibSass 3.4.x and 3.5.x through 3.5.4 that could be leveraged to cause a denial of service (application crash) or possibly unspecified other impact.

Learn more about our Web Application Penetration Testing UK.