Ran Benita

4 exploits Active since Aug 2018
CVE-2018-15853 WRITEUP MEDIUM WRITEUP
libxkbcommon < 0.8.1 - Denial of Service via Crafted Keymap File
Endless recursion exists in xkbcomp/expr.c in xkbcommon and libxkbcommon before 0.8.1, which could be used by local attackers to crash xkbcommon users by supplying a crafted keymap file that triggers boolean negation.
CVSS 5.5
CVE-2018-15854 WRITEUP MEDIUM WRITEUP
xkbcommon < 0.8.1 - Denial of Service via Crafted Keymap File
Unchecked NULL pointer usage in xkbcommon before 0.8.1 could be used by local attackers to crash (NULL pointer dereference) the xkbcommon parser by supplying a crafted keymap file, because geometry tokens were desupported incorrectly.
CVSS 5.5
CVE-2018-15855 WRITEUP MEDIUM WRITEUP
xkbcommon < 0.8.1 - Denial of Service via Crafted Keymap File
Unchecked NULL pointer usage in xkbcommon before 0.8.1 could be used by local attackers to crash (NULL pointer dereference) the xkbcommon parser by supplying a crafted keymap file, because the XkbFile for an xkb_geometry section was mishandled.
CVSS 5.5
CVE-2018-15856 WRITEUP MEDIUM WRITEUP
xkbcommon < 0.8.1 - Denial of Service via Keymap Parser Infinite Loop
An infinite loop when reaching EOL unexpectedly in compose/parser.c (aka the keymap parser) in xkbcommon before 0.8.1 could be used by local attackers to cause a denial of service during parsing of crafted keymap files.
CVSS 5.5