Peter Hutterer

2 exploits Active since Aug 2018
CVE-2018-15857 WRITEUP HIGH WRITEUP
libxkbcommon < 0.8.1 - Use-After-Free in ExprAppendMultiKeysymList
An invalid free in ExprAppendMultiKeysymList in xkbcomp/ast-build.c in xkbcommon before 0.8.1 could be used by local attackers to crash xkbcommon keymap parsers or possibly have unspecified other impact by supplying a crafted keymap file.
CVSS 7.8
CVE-2018-15858 WRITEUP MEDIUM WRITEUP
libxkbcommon < 0.8.1 - Denial of Service via Crafted Keymap File
Unchecked NULL pointer usage when handling invalid aliases in CopyKeyAliasesToKeymap in xkbcomp/keycodes.c in xkbcommon before 0.8.1 could be used by local attackers to crash (NULL pointer dereference) the xkbcommon parser by supplying a crafted keymap file.
CVSS 5.5