Описание
Endless recursion exists in xkbcomp/expr.c in xkbcommon and libxkbcommon before 0.8.1, which could be used by local attackers to crash xkbcommon users by supplying a crafted keymap file that triggers boolean negation.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| libxkbcommon | fixed | 0.8.2-1 | package | |
| libxkbcommon | ignored | stretch | package | |
| libxkbcommon | no-dsa | jessie | package | |
| x11-xkb-utils | unfixed | package |
Примечания
https://github.com/xkbcommon/libxkbcommon/commit/1f9d1248c07cda8aaff762429c0dce146de8632a
https://lists.freedesktop.org/archives/wayland-devel/2018-August/039232.html
https://www.openwall.com/lists/oss-security/2025/12/03/1
https://gitlab.freedesktop.org/xorg/app/xkbcomp/-/commit/da836764573298c53c625c6c237ab5211b2d3adf
For x11-xkb-utils/xkbcomp negligible security impact
EPSS
Связанные уязвимости
Endless recursion exists in xkbcomp/expr.c in xkbcommon and libxkbcommon before 0.8.1, which could be used by local attackers to crash xkbcommon users by supplying a crafted keymap file that triggers boolean negation.
Endless recursion exists in xkbcomp/expr.c in xkbcommon and libxkbcommon before 0.8.1, which could be used by local attackers to crash xkbcommon users by supplying a crafted keymap file that triggers boolean negation.
Endless recursion exists in xkbcomp/expr.c in xkbcommon and libxkbcommon before 0.8.1, which could be used by local attackers to crash xkbcommon users by supplying a crafted keymap file that triggers boolean negation.
Endless recursion exists in xkbcomp/expr.c in xkbcommon and libxkbcommon before 0.8.1, which could be used by local attackers to crash xkbcommon users by supplying a crafted keymap file that triggers boolean negation.
EPSS