CVE-2017-11554 - log back

CVE-2017-11554 created at 25 Sep 2019 19:31:40
Severity
+ Medium
Remote
+ Remote
Type
+ Denial of service
Description
+ There is a stack consumption vulnerability in the lex function in parser.hpp (as used in sassc) in LibSass 3.4.5. A crafted input will lead to a remote denial of service.
References
+ https://bugzilla.redhat.com/show_bug.cgi?id=1471780
+ https://github.com/sass/libsass/issues/2445
Notes