Libxkbcommon@* Security Vulnerabilities and Issues — Libxkbcommon@* CVE List

Lucene search

XkbcommonLibxkbcommon*

8 matches found

CVE•added 2018/08/25 9:29 p.m.•111 views

CVE-2018-15853

Endless recursion exists in xkbcomp/expr.c in xkbcommon and libxkbcommon before 0.8.1, which could be used by local attackers to crash xkbcommon users by supplying a crafted keymap file that triggers boolean negation.

5.5CVSS5.9AI score0.00059EPSS

CVE•added 2018/08/25 9:29 p.m.•108 views

CVE-2018-15857

An invalid free in ExprAppendMultiKeysymList in xkbcomp/ast-build.c in xkbcommon before 0.8.1 could be used by local attackers to crash xkbcommon keymap parsers or possibly have unspecified other impact by supplying a crafted keymap file.

7.8CVSS7.9AI score0.00083EPSS

CVE•added 2018/08/25 9:29 p.m.•101 views

CVE-2018-15859

Unchecked NULL pointer usage when parsing invalid atoms in ExprResolveLhs in xkbcomp/expr.c in xkbcommon before 0.8.2 could be used by local attackers to crash (NULL pointer dereference) the xkbcommon parser by supplying a crafted keymap file, because lookup failures are mishandled.

5.5CVSS5.9AI score0.00068EPSS

CVE•added 2018/08/25 9:29 p.m.•98 views

CVE-2018-15864

Unchecked NULL pointer usage in resolve_keysym in xkbcomp/parser.y in xkbcommon before 0.8.2 could be used by local attackers to crash (NULL pointer dereference) the xkbcommon parser by supplying a crafted keymap file, because a map access attempt can occur for a map that was never created.

5.5CVSS5.9AI score0.00059EPSS

CVE•added 2018/08/25 9:29 p.m.•96 views

CVE-2018-15858

Unchecked NULL pointer usage when handling invalid aliases in CopyKeyAliasesToKeymap in xkbcomp/keycodes.c in xkbcommon before 0.8.1 could be used by local attackers to crash (NULL pointer dereference) the xkbcommon parser by supplying a crafted keymap file.

5.5CVSS5.7AI score0.00082EPSS

CVE•added 2018/08/25 9:29 p.m.•96 views

CVE-2018-15861

Unchecked NULL pointer usage in ExprResolveLhs in xkbcomp/expr.c in xkbcommon before 0.8.2 could be used by local attackers to crash (NULL pointer dereference) the xkbcommon parser by supplying a crafted keymap file that triggers an xkb_intern_atom failure.

5.5CVSS5.9AI score0.00059EPSS

CVE•added 2018/08/25 9:29 p.m.•89 views

CVE-2018-15863

Unchecked NULL pointer usage in ResolveStateAndPredicate in xkbcomp/compat.c in xkbcommon before 0.8.2 could be used by local attackers to crash (NULL pointer dereference) the xkbcommon parser by supplying a crafted keymap file with a no-op modmask expression.

5.5CVSS5.9AI score0.00059EPSS

CVE•added 2018/08/25 9:29 p.m.•86 views

CVE-2018-15862

Unchecked NULL pointer usage in LookupModMask in xkbcomp/expr.c in xkbcommon before 0.8.2 could be used by local attackers to crash (NULL pointer dereference) the xkbcommon parser by supplying a crafted keymap file with invalid virtual modifiers.

5.5CVSS5.9AI score0.00059EPSS