← volver
CVE-2018-15857

CVE-2018-15857

EPSS 0.4%
An invalid free in ExprAppendMultiKeysymList in xkbcomp/ast-build.c in xkbcommon before 0.8.1 could be used by local attackers to crash xkbcommon keymap parsers or possibly have unspecified other impact by supplying a crafted keymap file.
Productos afectados
n/a · n/a

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://access.redhat.com/errata/RHSA-2019:2079https://github.com/xkbcommon/libxkbcommon/commit/c1e5ac16e77a21f87bdf3bc4dea61b037a17dddbhttps://lists.freedesktop.org/archives/wayland-devel/2018-August/039232.htmlhttps://security.gentoo.org/glsa/201810-05https://usn.ubuntu.com/3786-1/https://usn.ubuntu.com/3786-2/