Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2018-15864

Опубликовано: 25 авг. 2018
Источник: nvd
CVSS3: 5.5
CVSS2: 2.1
EPSS Низкий

Описание

Unchecked NULL pointer usage in resolve_keysym in xkbcomp/parser.y in xkbcommon before 0.8.2 could be used by local attackers to crash (NULL pointer dereference) the xkbcommon parser by supplying a crafted keymap file, because a map access attempt can occur for a map that was never created.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:xkbcommon:libxkbcommon:*:*:*:*:*:*:*:*
Версия до 0.8.1 (включая)
cpe:2.3:a:xkbcommon:xkbcommon:*:*:*:*:*:*:*:*
Версия до 0.8.1 (включая)
Конфигурация 2

Одно из

cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*

EPSS

Процентиль: 13%
0.00044
Низкий

5.5 Medium

CVSS3

2.1 Low

CVSS2

Дефекты

CWE-476

Связанные уязвимости

ubuntu логотип

CVE-2018-15864

CVSS3: 5.5
ubuntu
больше 7 лет назад

Unchecked NULL pointer usage in resolve_keysym in xkbcomp/parser.y in xkbcommon before 0.8.2 could be used by local attackers to crash (NULL pointer dereference) the xkbcommon parser by supplying a crafted keymap file, because a map access attempt can occur for a map that was never created.

redhat логотип

CVE-2018-15864

CVSS3: 3.3
redhat
больше 8 лет назад

Unchecked NULL pointer usage in resolve_keysym in xkbcomp/parser.y in xkbcommon before 0.8.2 could be used by local attackers to crash (NULL pointer dereference) the xkbcommon parser by supplying a crafted keymap file, because a map access attempt can occur for a map that was never created.

debian логотип

CVE-2018-15864

CVSS3: 5.5
debian
больше 7 лет назад

Unchecked NULL pointer usage in resolve_keysym in xkbcomp/parser.y in ...

github логотип

GHSA-rp9j-m9xr-vr7x

CVSS3: 5.5
github
больше 3 лет назад

Unchecked NULL pointer usage in resolve_keysym in xkbcomp/parser.y in xkbcommon before 0.8.2 could be used by local attackers to crash (NULL pointer dereference) the xkbcommon parser by supplying a crafted keymap file, because a map access attempt can occur for a map that was never created.

suse-cvrf логотип

openSUSE-SU-2018:3802-1

suse-cvrf
около 7 лет назад

Security update for libxkbcommon

EPSS

Процентиль: 13%
0.00044
Низкий

5.5 Medium

CVSS3

2.1 Low

CVSS2

Дефекты

CWE-476