Overview Repositories Revisions Requests Users Attributes Meta

libsass

Edit Package libsass
No description set
  • Sources inherited from project openSUSE:Leap:15.2
  • 1 derived packages
  • Download package
  • osc -A https://api.opensuse.org checkout openSUSE:Leap:15.2:Update/libsass && cd $_
  • Create Badge
Refresh
Refresh
Source Files
Filename Size Changed
libsass-3.6.1.tar.gz 0000333609 326 KB
libsass-am.diff 0000000957 957 Bytes
libsass-vers.diff 0000001305 1.27 KB
libsass.changes 0000038186 37.3 KB
libsass.spec 0000002431 2.37 KB
Revision 27 (latest revision is 28)
Yuchen Lin's avatar Yuchen Lin (maxlin_factory) accepted request 714784 from Cédric Bosdonnat's avatar Cédric Bosdonnat (cbosdonnat) (revision 27) 
- Update version to 3.6.1:
  * Fix use-after-free vulnerability in sass_context.cpp:handle_error 
    bsc#1096894, CVE-2018-11499
  * Disallow parent selector in selector_fns arguments
    bsc#1118301, CVE-2018-19797
  * Fix use-after-free vulnerability exists in the SharedPtr class 
    bsc#1118346, CVE-2018-19827
  * Fix stack-overflow in Eval::operator()
    bsc#1118348, CVE-2018-19837
  * Fix stack-overflow at IMPLEMENT_AST_OPERATORS expansion
    bsc#1118349, CVE-2018-19838
  * Fix buffer-overflow (OOB read) against some invalid input
    bsc#1118351, CVE-2018-19839
  * Fix Null pointer dereference in Sass::Eval::operator()(Sass::Supports_Operator*)
    bsc#1119789, CVE-2018-20190
  * Fix heap-buffer-overflow in Sass::Prelexer::parenthese_scope(char const*)
    bsc#1121943, CVE-2019-6283
  * Fix heap-based buffer over-read exists in Sass:Prelexer:alternatives
    bsc#1121944, CVE-2019-6284
  * Fix heap-based buffer over-read exists in Sass:Prelexer:skip_over_scopes
    bsc#1121945, CVE-2019-6286
  * Fix uncontrolled recursion in Sass:Parser:parse_css_variable_value
    bsc#1133200, CVE-2018-20821
  * Fix stack-overflow at Sass::Inspect::operator()
    bsc#1133201, CVE-2018-20822
Comments 0
openSUSE Build Service is sponsored by
Places