Mageia 2020-0049: libsass security update
Summary
Use-after-free vulnerability in sass_context.cpp:handle_error
(CVE-2018-11499).
Null pointer dereference in Sass::Selector_List::populate_extends
(CVE-2018-19797).
Use-after-free vulnerability exists in the SharedPtr class
(CVE-2018-19827).
Stack overflow in Eval::operator() (CVE-2018-19837).
Stack-overflow at IMPLEMENT_AST_OPERATORS expansion (CVE-2018-19838).
Buffer-overflow (OOB read) against some invalid input (CVE-2018-19839).
Null pointer dereference in Sass::Eval::operator()
(Sass::Supports_Operator*)
(CVE-2018-20190).
Uncontrolled recursion in Sass:Parser:parse_css_variable_value
(CVE-2018-20821).
Stack-overflow at Sass::Inspect::operator() (CVE-2018-20822).
Heap-buffer-overflow in Sass::Prelexer::parenthese_scope(char const*)
(CVE-2019-6283).
Heap-based buffer over-read exists in Sass:Prelexer:alternatives
(CVE-2019-6284).
Heap-based buffer over-read exists in Sass:Prelexer:skip_over_scopes
(CVE-2019-6286).
References
- https://bugs.mageia.org/show_bug.cgi?id=25755
- - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11499
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19797
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19827
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19837
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19838
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19839
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20190
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20821
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20822
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6283
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6284
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6286
Resolution
MGASA-2020-0049 - Updated libsass packages fix security vulnerabilities
SRPMS
- 7/core/libsass-3.6.1-1.mga7
