Overview

File _patchinfo of Package patchinfo.41931

<patchinfo incident="41931">
  <issue tracker="cve" id="2018-15859"/>
  <issue tracker="cve" id="2018-15853"/>
  <issue tracker="cve" id="2018-15863"/>
  <issue tracker="cve" id="2018-15861"/>
  <issue tracker="bnc" id="1105832">VUL-0: libxkbcommon,xkbcomp: multiple memory handling and correctness issues</issue>
  <packager>sndirsch</packager>
  <rating>moderate</rating>
  <category>security</category>
  <summary>Security update for xkbcomp</summary>
  <description>This update for xkbcomp fixes the following issues:

- CVE-2018-15863: NULL pointer dereference triggered by a a crafted keymap file with a no-op modmask expression can
  lead to a crash (bsc#1105832).
- CVE-2018-15861: NULL pointer dereference triggered by a crafted keymap file that induces an `xkb_intern_atom` failure
  can lead to a crash (bsc#1105832).
- CVE-2018-15859: NULL pointer dereference triggered by a specially a crafted keymap file can lead to a crash
  (bsc#1105832).
- CVE-2018-15853: endless recursion triggered by a crafted keymap file that induces boolean negation can lead to a
  crash (bsc#1105832).
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places