This issue did not affect the versions of libsass as shipped with Red Hat Enterprise Linux 8 as the flaw was introduced in a newer version of the library.
CVSS v3 metrics
NOTE: The following CVSS v3 metrics and score provided are preliminary and subject to review.
|CVSS3 Base Score||7.5|
|CVSS3 Base Metrics||CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H|
Affected Packages State
|Red Hat Enterprise Linux 8||libsass||Not affected|
CVE description copyright © 2017, The MITRE Corporation