CVE-2018-15863
- EPSS 0.54%
- Veröffentlicht 25.08.2018 21:29:02
- Zuletzt bearbeitet 21.11.2024 03:51:36
Unchecked NULL pointer usage in ResolveStateAndPredicate in xkbcomp/compat.c in xkbcommon before 0.8.2 could be used by local attackers to crash (NULL pointer dereference) the xkbcommon parser by supplying a crafted keymap file with a no-op modmask e...
CVE-2018-15864
- EPSS 0.43%
- Veröffentlicht 25.08.2018 21:29:02
- Zuletzt bearbeitet 21.11.2024 03:51:36
Unchecked NULL pointer usage in resolve_keysym in xkbcomp/parser.y in xkbcommon before 0.8.2 could be used by local attackers to crash (NULL pointer dereference) the xkbcommon parser by supplying a crafted keymap file, because a map access attempt ca...
CVE-2018-15853
- EPSS 0.54%
- Veröffentlicht 25.08.2018 21:29:01
- Zuletzt bearbeitet 21.11.2024 03:51:34
Endless recursion exists in xkbcomp/expr.c in xkbcommon and libxkbcommon before 0.8.1, which could be used by local attackers to crash xkbcommon users by supplying a crafted keymap file that triggers boolean negation.
CVE-2018-15854
- EPSS 0.43%
- Veröffentlicht 25.08.2018 21:29:01
- Zuletzt bearbeitet 21.11.2024 03:51:34
Unchecked NULL pointer usage in xkbcommon before 0.8.1 could be used by local attackers to crash (NULL pointer dereference) the xkbcommon parser by supplying a crafted keymap file, because geometry tokens were desupported incorrectly.
CVE-2018-15855
- EPSS 0.43%
- Veröffentlicht 25.08.2018 21:29:01
- Zuletzt bearbeitet 21.11.2024 03:51:34
Unchecked NULL pointer usage in xkbcommon before 0.8.1 could be used by local attackers to crash (NULL pointer dereference) the xkbcommon parser by supplying a crafted keymap file, because the XkbFile for an xkb_geometry section was mishandled.
CVE-2018-15856
- EPSS 0.43%
- Veröffentlicht 25.08.2018 21:29:01
- Zuletzt bearbeitet 21.11.2024 03:51:34
An infinite loop when reaching EOL unexpectedly in compose/parser.c (aka the keymap parser) in xkbcommon before 0.8.1 could be used by local attackers to cause a denial of service during parsing of crafted keymap files.
CVE-2018-15857
- EPSS 0.45%
- Veröffentlicht 25.08.2018 21:29:01
- Zuletzt bearbeitet 21.11.2024 03:51:35
An invalid free in ExprAppendMultiKeysymList in xkbcomp/ast-build.c in xkbcommon before 0.8.1 could be used by local attackers to crash xkbcommon keymap parsers or possibly have unspecified other impact by supplying a crafted keymap file.
CVE-2018-14598
- EPSS 4.23%
- Veröffentlicht 24.08.2018 19:29:01
- Zuletzt bearbeitet 21.11.2024 03:49:22
An issue was discovered in XListExtensions in ListExt.c in libX11 through 1.6.5. A malicious server can send a reply in which the first string overflows, causing a variable to be set to NULL that will be freed later on, leading to DoS (segmentation f...
CVE-2018-14599
- EPSS 4.8%
- Veröffentlicht 24.08.2018 19:29:01
- Zuletzt bearbeitet 21.11.2024 03:49:23
An issue was discovered in libX11 through 1.6.5. The function XListExtensions in ListExt.c is vulnerable to an off-by-one error caused by malicious server responses, leading to DoS or possibly unspecified other impact.
CVE-2018-14600
- EPSS 9.34%
- Veröffentlicht 24.08.2018 19:29:01
- Zuletzt bearbeitet 21.11.2024 03:49:23
An issue was discovered in libX11 through 1.6.5. The function XListExtensions in ListExt.c interprets a variable as signed instead of unsigned, resulting in an out-of-bounds write (of up to 128 bytes), leading to DoS or remote code execution.