Unchecked NULL pointer usage in xkbcommon before 0.8.1 could be used by local attackers to crash (NULL pointer dereference) the xkbcommon parser by supplying a crafted keymap file, because the XkbFile for an xkb_geometry section was mishandled.
[ { "deprecated": false, "id": "CVE-2018-15855-2c02092e", "signature_type": "Function", "source": "https://github.com/xkbcommon/libxkbcommon/commit/917636b1d0d70205a13f89062b95e3a0fc31d4ff", "digest": { "length": 1332.0, "function_hash": "313427961432042723751513025005151541073" }, "target": { "file": "src/xkbcomp/keymap.c", "function": "CompileKeymap" }, "signature_version": "v1" }, { "deprecated": false, "id": "CVE-2018-15855-97bd6938", "signature_type": "Line", "source": "https://github.com/xkbcommon/libxkbcommon/commit/917636b1d0d70205a13f89062b95e3a0fc31d4ff", "digest": { "line_hashes": [ "88409033307862462165229164438251216293", "122701994007965251946819529201359975982", "332971833168997577573162901784827898012", "252483941540618463363549744586113690502", "201764178136538960686405894051010879341" ], "threshold": 0.9 }, "target": { "file": "src/xkbcomp/keymap.c" }, "signature_version": "v1" } ]