Debian Package Tracker
Register | Log in
Subscribe

libsass

Choose email to subscribe with

general
  • source: libsass (main)
  • version: 3.6.5+20231221-3
  • maintainer: Debian Sass team (archive) (DMD)
  • uploaders: Anthony Fok [DMD] – Jonas Smedegaard [DMD]
  • arch: any
  • std-ver: 4.6.2
  • VCS: Git (Browse, QA)
versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]
[pool directory]
  • o-o-stable: 3.5.5-4
  • oldstable: 3.6.4+20201122-1
  • old-bpo: 3.6.5+20211226-1~bpo11+2
  • stable: 3.6.5+20220909-1
  • testing: 3.6.5+20231221-3
  • unstable: 3.6.5+20231221-3
versioned links
  • 3.5.5-4: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
  • 3.6.4+20201122-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
  • 3.6.5+20211226-1~bpo11+2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
  • 3.6.5+20220909-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
  • 3.6.5+20231221-3: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
binaries
  • libsass-dev
  • libsass1
action needed
2 bugs tagged patch in the BTS normal
The BTS contains patches fixing 2 bugs, consider including or untagging them.
Created: 2025-01-06 Last update: 2025-06-06 15:00
Build log checks report 1 warning low
Build log checks report 1 warning
Created: 2023-07-31 Last update: 2023-07-31 21:37
Standards version of the package is outdated. wishlist
The package should be updated to follow the last version of Debian Policy (Standards-Version 4.7.2 instead of 4.6.2).
Created: 2024-04-07 Last update: 2025-02-27 13:25
No known security issue in bookworm wishlist

There are 3 open security issues in bookworm.

3 ignored issues:
  • CVE-2022-26592: Stack Overflow vulnerability in libsass 3.6.5 via the CompoundSelector::has_real_parent_ref function.
  • CVE-2022-43357: Stack overflow vulnerability in ast_selectors.cpp in function Sass::CompoundSelector::has_real_parent_ref in libsass:3.6.5-8-g210218, which can be exploited by attackers to causea denial of service (DoS). Also affects the command line driver for libsass, sassc 3.6.2.
  • CVE-2022-43358: Stack overflow vulnerability in ast_selectors.cpp: in function Sass::ComplexSelector::has_placeholder in libsass:3.6.5-8-g210218, which can be exploited by attackers to cause a denial of service (DoS).
Created: 2023-08-24 Last update: 2025-02-27 05:02
news
[rss feed]
  • [2024-01-01] libsass 3.6.5+20231221-3 MIGRATED to testing (Debian testing watch)
  • [2023-12-30] Accepted libsass 3.6.5+20231221-3 (source) into unstable (Jonas Smedegaard)
  • [2023-12-30] Accepted libsass 3.6.5+20231221-2 (source) into unstable (Jonas Smedegaard)
  • [2023-12-21] Accepted libsass 3.6.5+20231221-1 (source) into experimental (Jonas Smedegaard)
  • [2023-08-03] libsass 3.6.5+20220909-3 MIGRATED to testing (Debian testing watch)
  • [2023-08-03] libsass 3.6.5+20220909-3 MIGRATED to testing (Debian testing watch)
  • [2023-07-31] Accepted libsass 3.6.5+20220909-3 (source) into unstable (Jonas Smedegaard)
  • [2023-07-30] Accepted libsass 3.6.5+20220909-2 (source) into unstable (Jonas Smedegaard)
  • [2022-12-15] libsass 3.6.5+20220909-1 MIGRATED to testing (Debian testing watch)
  • [2022-12-12] Accepted libsass 3.6.5+20220909-1 (source) into unstable (Jonas Smedegaard)
  • [2022-10-12] Accepted libsass 3.6.5+20211226-1~bpo11+2 (source) into bullseye-backports (Anthony Fok)
  • [2022-10-11] Accepted libsass 3.6.5+20211226-1~bpo11+1 (source amd64) into bullseye-backports (Debian FTP Masters) (signed by: Anthony Fok)
  • [2022-09-27] Accepted libsass 3.6.5+20211226-2 (source) into experimental (Jonas Smedegaard)
  • [2022-01-05] libsass 3.6.5+20211226-1 MIGRATED to testing (Debian testing watch)
  • [2022-01-02] Accepted libsass 3.6.5+20211226-1 (source) into unstable (Jonas Smedegaard)
  • [2021-11-20] libsass 3.6.5+20211111-2 MIGRATED to testing (Debian testing watch)
  • [2021-11-20] libsass 3.6.5+20211111-2 MIGRATED to testing (Debian testing watch)
  • [2021-11-17] Accepted libsass 3.6.5+20211111-2 (source) into unstable (Jonas Smedegaard)
  • [2021-11-17] Accepted libsass 3.6.5+20211111-1 (source) into experimental (Jonas Smedegaard)
  • [2021-09-11] libsass 3.6.5+20210718-1 MIGRATED to testing (Debian testing watch)
  • [2021-09-08] Accepted libsass 3.6.5+20210718-1 (source) into unstable (Jonas Smedegaard)
  • [2021-08-16] libsass 3.6.4+20210501-1 MIGRATED to testing (Debian testing watch)
  • [2021-06-02] Accepted libsass 3.6.5-1 (source) into experimental (Jonas Smedegaard)
  • [2021-05-06] Accepted libsass 3.6.4+20210501-1 (source) into unstable (Jonas Smedegaard)
  • [2021-01-12] libsass 3.6.4+20201122-1 MIGRATED to testing (Debian testing watch)
  • [2021-01-09] Accepted libsass 3.6.4+20201122-1 (source) into unstable (Jonas Smedegaard)
  • [2021-01-08] Accepted libsass 3.6.4+20201122-1~exp (source) into experimental (Jonas Smedegaard)
  • [2021-01-08] Accepted libsass 3.6.4-4 (source) into unstable (Jonas Smedegaard)
  • [2021-01-07] Accepted libsass 3.6.4-4~exp1 (source) into experimental (Jonas Smedegaard)
  • [2020-12-08] Accepted libsass 3.6.4-3~bpo10+1 (source amd64) into buster-backports, buster-backports (Debian FTP Masters) (signed by: Anthony Fok)
  • 1
  • 2
bugs [bug history graph]
  • all: 4 5
  • RC: 0
  • I&N: 4 5
  • M&W: 0
  • F&P: 0
  • patch: 2
links
  • homepage
  • lintian
  • buildd: logs, checks, reproducibility, cross
  • popcon
  • browse source code
  • edit tags
  • other distros
  • security tracker
  • debci
ubuntu Ubuntu logo [Information about Ubuntu for Debian Developers]
  • version: 3.6.6-0ubuntu1
  • 1 bug
  • patches for 3.6.6-0ubuntu1

Debian Package Tracker — Copyright 2013-2025 The Distro Tracker Developers
Report problems to the tracker.debian.org pseudo-package in the Debian BTS.
Documentation — Bugs — Git Repository — Contributing