Oval Definition:oval:org.opensuse.security:def:201711608
Revision Date:2019-09-27Version:1
Title:CVE-2017-11608
Description:

There is a heap-based buffer over-read in the Sass::Prelexer::re_linebreak function in lexer.cpp in LibSass 3.4.5. A crafted input will lead to a remote denial of service attack.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2017-11608
Platform(s):openSUSE Leap 42.2
openSUSE Leap 42.3
Product(s):
Definition Synopsis
  • openSUSE Leap 42.2 is installed
  • AND Package Information
  • libsass-3.3.2-2.3.1 is installed
  • AND libsass is signed with openSUSE key
  • OR
  • libsass-3_3_2-0-3.3.2-2.3.1 is installed
  • AND libsass-3_3_2-0 is signed with openSUSE key
  • OR
  • libsass-devel-3.3.2-2.3.1 is installed
  • AND libsass-devel is signed with openSUSE key
    • Definition Synopsis
  • openSUSE Leap 42.3 is installed
  • AND Package Information
  • libsass-3.3.2-5 is installed
  • AND libsass is signed with openSUSE key
  • OR
  • libsass-3_3_2-0-3.3.2-5 is installed
  • AND libsass-3_3_2-0 is signed with openSUSE key
  • OR
  • libsass-devel-3.3.2-5 is installed
  • AND libsass-devel is signed with openSUSE key
    • BACK