SUSE CVE-2018-15856

An infinite loop when reaching EOL unexpectedly in compose/parser.c aka the keymap parser in xkbcommon before 0.8.1 could be used by local attackers to cause a denial of service during parsing of crafted keymap files...

SUSE CVE-2018-15857

An invalid free in ExprAppendMultiKeysymList in xkbcomp/ast-build.c in xkbcommon before 0.8.1 could be used by local attackers to crash xkbcommon keymap parsers or possibly have unspecified other impact by supplying a crafted keymap file...

libxkbcommon: NULL pointer dereference when handling xkb_geometry

Unchecked NULL pointer usage in xkbcommon before 0.8.1 could be used by local attackers to crash NULL pointer dereference the xkbcommon parser by supplying a crafted keymap file, because the XkbFile for an xkbgeometry section was mishandled...

DEBIAN-CVE-2018-15864

Unchecked NULL pointer usage in resolvekeysym in xkbcomp/parser.y in xkbcommon before 0.8.2 could be used by local attackers to crash NULL pointer dereference the xkbcommon parser by supplying a crafted keymap file, because a map access attempt can occur for a map that was never created...

DEBIAN-CVE-2018-15857

An invalid free in ExprAppendMultiKeysymList in xkbcomp/ast-build.c in xkbcommon before 0.8.1 could be used by local attackers to crash xkbcommon keymap parsers or possibly have unspecified other impact by supplying a crafted keymap file...

PT-2018-13245 · Xkbcommon +4 · Xkbcommon +4

Name of the Vulnerable Software and Affected Versions: xkbcommon versions prior to 0.8.1 Description: The issue arises from unchecked NULL pointer usage in the xkbcommon parser, which can be exploited by local attackers to cause a crash due to a NULL pointer dereference. This can occur when a...

PT-2018-13246 · Xkbcommon +4 · Xkbcommon +4

Name of the Vulnerable Software and Affected Versions: xkbcommon versions prior to 0.8.1 Description: The issue is related to an infinite loop that occurs when the End Of Line EOL is reached unexpectedly in the keymap parser, located in compose/parser.c. This could be exploited by local attackers...

UBUNTU-CVE-2018-15857

An invalid free in ExprAppendMultiKeysymList in xkbcomp/ast-build.c in xkbcommon before 0.8.1 could be used by local attackers to crash xkbcommon keymap parsers or possibly have unspecified other impact by supplying a crafted keymap file...

UBUNTU-CVE-2018-15856

An infinite loop when reaching EOL unexpectedly in compose/parser.c aka the keymap parser in xkbcommon before 0.8.1 could be used by local attackers to cause a denial of service during parsing of crafted keymap files...

PT-2018-13250 · Xkbcommon +5 · Xkbcommon +5

Name of the Vulnerable Software and Affected Versions: xkbcommon versions prior to 0.8.2 Description: The issue is related to unchecked NULL pointer usage in the ExprResolveLhs function in xkbcomp/expr.c. This could be exploited by local attackers to crash the xkbcommon parser by supplying a...

PT-2018-13248 · Xkbcommon +3 · Xkbcommon +3

Name of the Vulnerable Software and Affected Versions: xkbcommon versions prior to 0.8.1 Description: The issue arises from unchecked NULL pointer usage when handling invalid aliases in the CopyKeyAliasesToKeymap function in xkbcomp/keycodes.c. This could be exploited by local attackers to crash...