Description
There is an illegal address access in ast.cpp of LibSass 3.4.5. A crafted input will lead to a remote denial of service attack.
Remediation
References
https://bugzilla.redhat.com/show_bug.cgi?id=1470722
Related Vulnerabilities
CVE-2020-7773 Vulnerability in npm package markdown-it-highlightjs
CVE-2018-16487 Vulnerability in maven package org.webjars.npm:lodash
CVE-2022-23458 Vulnerability in npm package tui-grid
CVE-2020-26938 Vulnerability in npm package oauth2-server
CVE-2017-16881 Vulnerability in maven package org.b3log:symphony