Oval Definition:oval:org.opensuse.security:def:201711556
Revision Date:2019-09-27Version:1
Title:CVE-2017-11556
Description:

There is a stack consumption vulnerability in the Parser::advanceToNextToken function in parser.cpp in LibSass 3.4.5. A crafted input may lead to remote denial of service.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2017-11556
Platform(s):openSUSE Leap 42.2
openSUSE Leap 42.3
Product(s):
Definition Synopsis
  • openSUSE Leap 42.2 is installed
  • AND Package Information
  • libsass-3.3.2-2.3.1 is installed
  • AND libsass is signed with openSUSE key
  • OR
  • libsass-3_3_2-0-3.3.2-2.3.1 is installed
  • AND libsass-3_3_2-0 is signed with openSUSE key
  • OR
  • libsass-devel-3.3.2-2.3.1 is installed
  • AND libsass-devel is signed with openSUSE key
    • Definition Synopsis
  • openSUSE Leap 42.3 is installed
  • AND Package Information
  • libsass-3.3.2-5 is installed
  • AND libsass is signed with openSUSE key
  • OR
  • libsass-3_3_2-0-3.3.2-5 is installed
  • AND libsass-3_3_2-0 is signed with openSUSE key
  • OR
  • libsass-devel-3.3.2-5 is installed
  • AND libsass-devel is signed with openSUSE key
    • BACK