Description
LibSass before 3.6.3 allows a heap-based buffer over-read in Sass::weaveParents in ast_sel_weave.cpp.
Remediation
References
https://github.com/sass/libsass/issues/2999
Related Vulnerabilities
CVE-2020-11023 Vulnerability in maven package org.webjars.bowergithub.jquery:jquery
CVE-2020-11023 Vulnerability in maven package org.webjars:jquery
CVE-2023-26134 Vulnerability in npm package git-commit-info
CVE-2022-29631 Vulnerability in maven package org.jodd:jodd-http
CVE-2022-1295 Vulnerability in maven package org.webjars.bower:fullpage