CVE-2018-15853

🗓️ 25 Aug 2018 21:29:01Reported by [email protected]Type

Endless recursion in xkbcomp/expr.c in xkbcommon and libxkbcommon before 0.8.1 allows local attackers to crash xkbcommon users by supplying crafted keymap file with boolean negatio

Reporter	Title	Published	Views	Family All 105
Tenable Nessus	Amazon Linux 2 : xorg-x11-server (ALAS-2020-1433)	4 Jun 202000:00	–	nessus
Tenable Nessus	CentOS 7 : gdm / libX11 / libxkbcommon / xorg-x11-drv-ati / xorg-x11-drv-vesa / etc (CESA-2019:2079)	30 Aug 201900:00	–	nessus
Tenable Nessus	EulerOS 2.0 SP5 : libxkbcommon (EulerOS-SA-2019-2540)	9 Dec 201900:00	–	nessus
Tenable Nessus	EulerOS Virtualization for ARM 64 3.0.2.0 : libxkbcommon (EulerOS-SA-2020-1246)	13 Mar 202000:00	–	nessus
Tenable Nessus	Fedora 28 : libxkbcommon (2018-4295467df0)	3 Jan 201900:00	–	nessus
Tenable Nessus	Fedora 43 : xkbcomp (2025-3a9b79ca0e)	8 Dec 202500:00	–	nessus
Tenable Nessus	Fedora 42 : xkbcomp (2025-e110b32ac7)	14 Dec 202500:00	–	nessus
Tenable Nessus	GLSA-201810-05 : xkbcommon: Multiple vulnerabilities	31 Oct 201800:00	–	nessus
Tenable Nessus	NewStart CGSL CORE 5.04 / MAIN 5.04 : libxkbcommon Multiple Vulnerabilities (NS-SA-2019-0199)	24 Oct 201900:00	–	nessus
Tenable Nessus	NewStart CGSL CORE 5.05 / MAIN 5.05 : libxkbcommon Multiple Vulnerabilities (NS-SA-2019-0246)	31 Dec 201900:00	–	nessus

NVD

Node

xkbcommon libxkbcommonRange<0.8.1

xkbcommon xkbcommonRange<0.8.1

Node

canonical ubuntu_linuxMatch14.04lts

canonical ubuntu_linuxMatch16.04lts

canonical ubuntu_linuxMatch18.04lts

Source	Link
access	www.access.redhat.com/errata/RHSA-2019:2079
usn	www.usn.ubuntu.com/3786-2/
usn	www.usn.ubuntu.com/3786-1/
security	www.security.gentoo.org/glsa/201810-05
github	www.github.com/xkbcommon/libxkbcommon/commit/1f9d1248c07cda8aaff762429c0dce146de8632a
lists	www.lists.freedesktop.org/archives/wayland-devel/2018-August/039232.html

21 Nov 2024 03:51Current

6.1Medium risk

Vulners AI Score6.1

CVSS 22.1

CVSS 35.5

EPSS0.0007

CWE-400