OSV-2020-862

See a problem?

Import Source

https://github.com/google/oss-fuzz-vulns/blob/main/vulns/libsass/OSV-2020-862.yaml

JSON Data

https://api.osv.dev/v1/vulns/OSV-2020-862

Published

2020-07-14T22:13:48.731457Z

Modified

2023-12-22T14:06:49.113213Z

Summary

Use-of-uninitialized-value in std::__1::vector<std::__1::vector<Sass::Extension, std::__1::allocator<Sass::Ext

Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=21223

Crash type: Use-of-uninitialized-value
Crash state:
std::__1::vector&lt;std::__1::vector&lt;Sass::Extension, std::__1::allocator&lt;Sass::Ext
Sass::Extender::extendCompound
Sass::Extender::extendComplex

References

https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=21223

Affected packages

OSS-Fuzz / libsass

Package

Name: libsass
Purl: pkg:generic/libsass

Affected ranges

Type: GIT
Repo: https://github.com/sass/libsass.git
Events: Introduced

2c4b0c39138b3bde9ee6db86264459812161ddd0

Affected versions

3.*

3.6.2

3.6.3

3.6.4

3.6.5

3.6.6

Ecosystem specific

{
    "severity": "MEDIUM"
}