Description
LibSass before 3.6.3 allows a NULL pointer dereference in Sass::Parser::parseCompoundSelector in parser_selectors.cpp.
Remediation
References
https://github.com/sass/libsass/issues/3001
Related Vulnerabilities
CVE-2023-3691 Vulnerability in maven package org.webjars:layui
CVE-2022-24898 Vulnerability in maven package org.xwiki.commons:xwiki-commons-xml
CVE-2023-22457 Vulnerability in maven package org.xwiki.contrib:application-ckeditor-plugins
CVE-2021-39176 Vulnerability in npm package detect-character-encoding
CVE-2023-40345 Vulnerability in maven package org.jenkins-ci.plugins:delphix