Unchecked NULL pointer usage in xkbcommon before 0.8.1 could be used by
local attackers to crash (NULL pointer dereference) the xkbcommon parser by
supplying a crafted keymap file, because geometry tokens were desupported
incorrectly.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
ubuntu | 18.04 | noarch | libxkbcommon | < 0.8.0-1ubuntu0.1 | UNKNOWN |
ubuntu | 14.04 | noarch | libxkbcommon | < 0.4.1-0ubuntu1.1 | UNKNOWN |
ubuntu | 16.04 | noarch | libxkbcommon | < 0.5.0-1ubuntu2.1 | UNKNOWN |
launchpad.net/bugs/cve/CVE-2018-15854
lists.freedesktop.org/archives/wayland-devel/2018-August/039232.html
nvd.nist.gov/vuln/detail/CVE-2018-15854
security-tracker.debian.org/tracker/CVE-2018-15854
ubuntu.com/security/notices/USN-3786-1
ubuntu.com/security/notices/USN-3786-2
www.cve.org/CVERecord?id=CVE-2018-15854