Description
There is a stack consumption vulnerability in the Parser::advanceToNextToken function in parser.cpp in LibSass 3.4.5. A crafted input may lead to remote denial of service.
Remediation
References
https://bugzilla.redhat.com/show_bug.cgi?id=1471786
Related Vulnerabilities
CVE-2023-46998 Vulnerability in maven package org.webjars.bower:bootbox
CVE-2021-41571 Vulnerability in maven package org.apache.pulsar:pulsar
CVE-2017-17837 Vulnerability in maven package org.apache.deltaspike.modules:jsf-module-project
CVE-2021-21331 Vulnerability in maven package com.datadoghq:datadog-api-client