rpm package
suse/xkbcomp&distro=SUSE Linux Enterprise Server for SAP applications 16.0
pkg:rpm/suse/xkbcomp&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20applications%2016.0
Vulnerabilities (4)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2018-15863 | Med | 5.5 | < 1.4.7-160000.3.1 | 1.4.7-160000.3.1 | Aug 25, 2018 | Unchecked NULL pointer usage in ResolveStateAndPredicate in xkbcomp/compat.c in xkbcommon before 0.8.2 could be used by local attackers to crash (NULL pointer dereference) the xkbcommon parser by supplying a crafted keymap file with a no-op modmask expression. | |
| CVE-2018-15861 | Med | 5.5 | < 1.4.7-160000.3.1 | 1.4.7-160000.3.1 | Aug 25, 2018 | Unchecked NULL pointer usage in ExprResolveLhs in xkbcomp/expr.c in xkbcommon before 0.8.2 could be used by local attackers to crash (NULL pointer dereference) the xkbcommon parser by supplying a crafted keymap file that triggers an xkb_intern_atom failure. | |
| CVE-2018-15859 | Med | 5.5 | < 1.4.7-160000.3.1 | 1.4.7-160000.3.1 | Aug 25, 2018 | Unchecked NULL pointer usage when parsing invalid atoms in ExprResolveLhs in xkbcomp/expr.c in xkbcommon before 0.8.2 could be used by local attackers to crash (NULL pointer dereference) the xkbcommon parser by supplying a crafted keymap file, because lookup failures are mishandl | |
| CVE-2018-15853 | Med | 5.5 | < 1.4.7-160000.3.1 | 1.4.7-160000.3.1 | Aug 25, 2018 | Endless recursion exists in xkbcomp/expr.c in xkbcommon and libxkbcommon before 0.8.1, which could be used by local attackers to crash xkbcommon users by supplying a crafted keymap file that triggers boolean negation. |
- affected < 1.4.7-160000.3.1fixed 1.4.7-160000.3.1
Unchecked NULL pointer usage in ResolveStateAndPredicate in xkbcomp/compat.c in xkbcommon before 0.8.2 could be used by local attackers to crash (NULL pointer dereference) the xkbcommon parser by supplying a crafted keymap file with a no-op modmask expression.
- affected < 1.4.7-160000.3.1fixed 1.4.7-160000.3.1
Unchecked NULL pointer usage in ExprResolveLhs in xkbcomp/expr.c in xkbcommon before 0.8.2 could be used by local attackers to crash (NULL pointer dereference) the xkbcommon parser by supplying a crafted keymap file that triggers an xkb_intern_atom failure.
- affected < 1.4.7-160000.3.1fixed 1.4.7-160000.3.1
Unchecked NULL pointer usage when parsing invalid atoms in ExprResolveLhs in xkbcomp/expr.c in xkbcommon before 0.8.2 could be used by local attackers to crash (NULL pointer dereference) the xkbcommon parser by supplying a crafted keymap file, because lookup failures are mishandl
- affected < 1.4.7-160000.3.1fixed 1.4.7-160000.3.1
Endless recursion exists in xkbcomp/expr.c in xkbcommon and libxkbcommon before 0.8.1, which could be used by local attackers to crash xkbcommon users by supplying a crafted keymap file that triggers boolean negation.