Debian X11-Xkb-Utils vulnerabilities

CVE-2018-15859 [MEDIUM] CVE-2018-15859: libxkbcommon - Unchecked NULL pointer usage when parsing invalid atoms in ExprResolveLhs in xkb... Unchecked NULL pointer usage when parsing invalid atoms in ExprResolveLhs in xkbcomp/expr.c in xkbcommon before 0.8.2 could be used by local attackers to crash (NULL pointer dereference) the xkbcommon parser by supplying a crafted keymap file, because lookup failures are mishandled. Scope: local bookworm: resolved (fixed in 0.8.2-1) bullseye: resolved (fixed

CVE-2018-15861 [MEDIUM] CVE-2018-15861: libxkbcommon - Unchecked NULL pointer usage in ExprResolveLhs in xkbcomp/expr.c in xkbcommon be... Unchecked NULL pointer usage in ExprResolveLhs in xkbcomp/expr.c in xkbcommon before 0.8.2 could be used by local attackers to crash (NULL pointer dereference) the xkbcommon parser by supplying a crafted keymap file that triggers an xkb_intern_atom failure. Scope: local bookworm: resolved (fixed in 0.8.2-1) bullseye: resolved (fixed in 0.8.2-1) forky: resolve

CVE-2018-15853 [MEDIUM] CVE-2018-15853: libxkbcommon - Endless recursion exists in xkbcomp/expr.c in xkbcommon and libxkbcommon before ... Endless recursion exists in xkbcomp/expr.c in xkbcommon and libxkbcommon before 0.8.1, which could be used by local attackers to crash xkbcommon users by supplying a crafted keymap file that triggers boolean negation. Scope: local bookworm: resolved (fixed in 0.8.2-1) bullseye: resolved (fixed in 0.8.2-1) forky: resolved (fixed in 0.8.2-1) sid: resolved (fixe

CVE-2018-15863 [MEDIUM] CVE-2018-15863: libxkbcommon - Unchecked NULL pointer usage in ResolveStateAndPredicate in xkbcomp/compat.c in ... Unchecked NULL pointer usage in ResolveStateAndPredicate in xkbcomp/compat.c in xkbcommon before 0.8.2 could be used by local attackers to crash (NULL pointer dereference) the xkbcommon parser by supplying a crafted keymap file with a no-op modmask expression. Scope: local bookworm: resolved (fixed in 0.8.2-1) bullseye: resolved (fixed in 0.8.2-1) forky: reso