SUSE: Security Advisory (SUSE-SU-2024:0037-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE SLES12 Security Update : libxkbcommon (SUSE-SU-2024:0037-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:0037-1 advisory. - Endless recursion exists in xkbcomp/expr.c in xkbcommon and libxkbcommon before 0.8.1, which could be used by local attackers to...

NewStart CGSL CORE 5.05 / MAIN 5.05 : mesa-libGLw Multiple Vulnerabilities (NS-SA-2023-0024)

The remote NewStart CGSL host, running version CORE 5.05 / MAIN 5.05, has mesa-libGLw packages installed that are affected by multiple vulnerabilities: - An issue was discovered in XListExtensions in ListExt.c in libX11 through 1.6.5. A malicious server can send a reply in which the first string...

SUSE CVE-2018-15857

An invalid free in ExprAppendMultiKeysymList in xkbcomp/ast-build.c in xkbcommon before 0.8.1 could be used by local attackers to crash xkbcommon keymap parsers or possibly have unspecified other impact by supplying a crafted keymap file...

SUSE: Security Advisory (SUSE-SU-2018:3685-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Medium: xorg-x11-server

Issue Overview: It was discovered that libX11 does not properly validate input coming from the server, causing XListExtensions and XGetFontPath functions to produce an invalid list of elements that in turn make XFreeExtensionsList and XFreeFontPath access invalid memory. An attacker who can eithe...

Huawei EulerOS: Security Advisory for libxkbcommon (EulerOS-SA-2020-1246)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

gdm, libX11, libxkbcommon, xorg security update

CentOS Errata and Security Advisory CESA-2019:2079 An update for Xorg is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

CentOS 7 : gdm / libX11 / libxkbcommon / xorg-x11-drv-ati / xorg-x11-drv-vesa / etc (CESA-2019:2079)

An update for Xorg is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the C...

Scientific Linux Security Update : Xorg on SL7.x x86_64 (20190806)

Security Fixes : - libX11: Crash on invalid reply in XListExtensions in ListExt.c CVE-2018-14598 - libX11: Off-by-one error in XListExtensions in ListExt.c CVE-2018-14599 - libX11: Out of Bounds write in XListExtensions in ListExt.c CVE-2018-14600 - libxkbcommon: Invalid free in...

Moderate: Red Hat Security Advisory: Xorg security and bug fix update

An update for Xorg is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the C...

SUSE SLED15 / SLES15 Security Update : libxkbcommon (SUSE-SU-2018:3685-1)

This update for libxkbcommon to version 0.8.2 fixes the following issues : Fix a few NULL-dereferences, out-of-bounds access and undefined behavior in the XKB text format parser. CVE-2018-15853: Endless recursion could have been used by local attackers to crash xkbcommon users by supplying a...

openSUSE: Security Advisory for libxkbcommon (openSUSE-SU-2018:3802-1)

The remote host is missing an update for the Copyright C 2018 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

GLSA-201810-05 : xkbcommon: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-201810-05 xkbcommon: Multiple vulnerabilities Multiple vulnerabilities have been discovered in libxkbcommon. Please review the CVE identifiers referenced below for details. Impact : A local attacker could supply a specially crafte...

Ubuntu: Security Advisory (USN-3786-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

USN-3786-1: libxkbcommon vulnerabilities | Cloud Foundry

Severity Medium Vendor Canonical Ubuntu Versions Affected Canonical Ubuntu 14.04 Description It was discovered that libxkbcommon incorrectly handled certain files. An attacker could possibly use this issue to cause a denial of service. CVE-2018-15853, CVE-2018-15854, CVE-2018-15855, CVE-2018-1585...

CVE-2018-15857

The CVE-2018-15857 entry describes an invalid free in xkbcomp/ast-build.c (ExprAppendMultiKeysymList) in libxkbcommon prior to 0.8.1 that could allow a local attacker to crash the xkbcommon keymap parsers or possibly have unspecified impact by supplying a crafted keymap file. The issue is caused ...