Description
This update for libsass fixes the following DoS vulnerabilities:
- CVE-2017-11554: Stack consumption vulnerability allowed remote DoS via
crafted input (1050148)
- CVE-2017-11555: Illegal address access in Eval::operator allowed remote
DoS via crafted input (boo#1050149)
- CVE-2017-11556: Stack consumption vulnerability allowed remote DoS via
crafted input (boo#1050150)
- CVE-2017-11605: Heap based buffer over-read allowed remote DoS via
crafted input (boo#1050151)
- CVE-2017-11608: Heap-based buffer over-read allowed remote DoS via
crafted input (boo#1050380)