VYPR

rpm package

opensuse/xkbcomp&distro=openSUSE Leap 16.0

pkg:rpm/opensuse/xkbcomp&distro=openSUSE%20Leap%2016.0

Vulnerabilities (4)

  • CVE-2018-15863MedAug 25, 2018
    affected < 1.4.7-160000.3.1fixed 1.4.7-160000.3.1

    Unchecked NULL pointer usage in ResolveStateAndPredicate in xkbcomp/compat.c in xkbcommon before 0.8.2 could be used by local attackers to crash (NULL pointer dereference) the xkbcommon parser by supplying a crafted keymap file with a no-op modmask expression.

  • CVE-2018-15861MedAug 25, 2018
    affected < 1.4.7-160000.3.1fixed 1.4.7-160000.3.1

    Unchecked NULL pointer usage in ExprResolveLhs in xkbcomp/expr.c in xkbcommon before 0.8.2 could be used by local attackers to crash (NULL pointer dereference) the xkbcommon parser by supplying a crafted keymap file that triggers an xkb_intern_atom failure.

  • CVE-2018-15859MedAug 25, 2018
    affected < 1.4.7-160000.3.1fixed 1.4.7-160000.3.1

    Unchecked NULL pointer usage when parsing invalid atoms in ExprResolveLhs in xkbcomp/expr.c in xkbcommon before 0.8.2 could be used by local attackers to crash (NULL pointer dereference) the xkbcommon parser by supplying a crafted keymap file, because lookup failures are mishandl

  • CVE-2018-15853MedAug 25, 2018
    affected < 1.4.7-160000.3.1fixed 1.4.7-160000.3.1

    Endless recursion exists in xkbcomp/expr.c in xkbcommon and libxkbcommon before 0.8.1, which could be used by local attackers to crash xkbcommon users by supplying a crafted keymap file that triggers boolean negation.