Description
LibSass before 3.6.3 allows a heap-based buffer over-read in Sass::weaveParents in ast_sel_weave.cpp.
Remediation
References
https://github.com/sass/libsass/issues/2999
Related Vulnerabilities
CVE-2023-33510 Vulnerability in maven package org.jeecgframework.p3:jeecg-p3-biz-chat
CVE-2022-43419 Vulnerability in maven package org.jenkins-ci.plugins:katalon
CVE-2020-7724 Vulnerability in npm package tiny-conf
CVE-2019-10791 Vulnerability in npm package promise-probe
CVE-2023-26120 Vulnerability in maven package com.xuxueli:xxl-job