VYPR

rpm package

suse/xkbcomp&distro=SUSE Linux Enterprise Server LTSS Extended Security 12 SP5

pkg:rpm/suse/xkbcomp&distro=SUSE%20Linux%20Enterprise%20Server%20LTSS%20Extended%20Security%2012%20SP5

Vulnerabilities (4)

  • CVE-2018-15863MedAug 25, 2018
    affected < 1.2.4-11.3.1fixed 1.2.4-11.3.1

    Unchecked NULL pointer usage in ResolveStateAndPredicate in xkbcomp/compat.c in xkbcommon before 0.8.2 could be used by local attackers to crash (NULL pointer dereference) the xkbcommon parser by supplying a crafted keymap file with a no-op modmask expression.

  • CVE-2018-15861MedAug 25, 2018
    affected < 1.2.4-11.3.1fixed 1.2.4-11.3.1

    Unchecked NULL pointer usage in ExprResolveLhs in xkbcomp/expr.c in xkbcommon before 0.8.2 could be used by local attackers to crash (NULL pointer dereference) the xkbcommon parser by supplying a crafted keymap file that triggers an xkb_intern_atom failure.

  • CVE-2018-15859MedAug 25, 2018
    affected < 1.2.4-11.3.1fixed 1.2.4-11.3.1

    Unchecked NULL pointer usage when parsing invalid atoms in ExprResolveLhs in xkbcomp/expr.c in xkbcommon before 0.8.2 could be used by local attackers to crash (NULL pointer dereference) the xkbcommon parser by supplying a crafted keymap file, because lookup failures are mishandl

  • CVE-2018-15853MedAug 25, 2018
    affected < 1.2.4-11.3.1fixed 1.2.4-11.3.1

    Endless recursion exists in xkbcomp/expr.c in xkbcommon and libxkbcommon before 0.8.1, which could be used by local attackers to crash xkbcommon users by supplying a crafted keymap file that triggers boolean negation.