Description
LibSass before 3.6.3 allows a NULL pointer dereference in Sass::Parser::parseCompoundSelector in parser_selectors.cpp.
Remediation
References
https://github.com/sass/libsass/issues/3001
Related Vulnerabilities
CVE-2023-22467 Vulnerability in npm package luxon
CVE-2023-36478 Vulnerability in maven package org.eclipse.jetty:jetty-http
CVE-2017-18355 Vulnerability in npm package rendertron-middleware
CVE-2020-7622 Vulnerability in maven package io.jooby:jooby-netty
CVE-2023-26120 Vulnerability in maven package com.xuxueli:xxl-job