CVE-2018-15857
CVE-2018-15857
An invalid free in ExprAppendMultiKeysymList in xkbcomp/ast-build.c in xkbcommon before 0.8.1 could be used by local attackers to crash xkbcommon keymap parsers or possibly have unspecified other impact by supplying a crafted keymap file.
Affected products
n/a · n/aWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
https://access.redhat.com/errata/RHSA-2019:2079https://github.com/xkbcommon/libxkbcommon/commit/c1e5ac16e77a21f87bdf3bc4dea61b037a17dddbhttps://lists.freedesktop.org/archives/wayland-devel/2018-August/039232.htmlhttps://security.gentoo.org/glsa/201810-05https://usn.ubuntu.com/3786-1/https://usn.ubuntu.com/3786-2/