Stack Overflow Vulnerability in libsass:3.6.5-8-g210218 and sassc 3.6.2

Stack Overflow Vulnerability in libsass:3.6.5-8-g210218 and sassc 3.6.2

CVE-2022-43357 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Stack overflow vulnerability in ast_selectors.cpp in function Sass::CompoundSelector::has_real_parent_ref in libsass:3.6.5-8-g210218, which can be exploited by attackers to causea denial of service (DoS). Also affects the command line driver for libsass, sassc 3.6.2.

Learn more about our Web Application Penetration Testing UK.