Bug 1643758

Summary: There is a Segmentation fault at Sass::Parser::parse_css_variable_value_token in libsass3.5-stable.
Product: [Fedora] Fedora Reporter: shuitao gan <ganshuitao>
Component: libsassAssignee: Aurelien Bompard <aurelien>
Status: CLOSED UPSTREAM QA Contact: Fedora Extras Quality Assurance <extras-qa>
Severity: urgent Docs Contact:
Priority: unspecified    
Version: 31CC: aurelien, mcatanza
Target Milestone: ---   
Target Release: ---   
Hardware: All   
OS: All   
Whiteboard:
Fixed In Version: Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2020-11-02 15:12:44 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Attachments:
Description Flags
Trigger by "./sassc POC0" none

Description shuitao gan 2018-10-28 13:09:56 UTC 
Created attachment 1498274 [details]
Trigger by "./sassc POC0"

version: libsass3.5-stable
Summary: 

There is a Segmentation fault at Sass::Parser::parse_css_variable_value_token in libsass. 



$./sassc POC0
Segmentation fault

The GDB debugging information is as follow


(gdb) set args POC0
(gdb) r


Program received signal SIGSEGV, Segmentation fault.
0x00000000006c555c in Sass::Parser::parse_css_variable_value_token(bool) ()
...
Comment 1 Ben Cotton 2019-08-13 16:47:47 UTC 
This bug appears to have been reported against 'rawhide' during the Fedora 31 development cycle.
Changing version to '31'.
Comment 2 Michael Catanzaro 2020-11-02 15:12:44 UTC 
Red Hat Bugzilla is not an appropriate forum for reporting security bugs in upstream components. As you can see, your bug report here has been ignored for three years, and will likely continue to be ignored, so I'm going to go ahead and close it. Please feel free to report this upstream if you want the developers to look at it.