Unchecked NULL pointer usage in xkbcommon before 0.8.1 could be used by local attackers to crash (NULL pointer dereference) the xkbcommon parser by supplying a crafted keymap file, because the XkbFile for an xkb_geometry section was mishandled.
[ { "id": "CVE-2018-15855-2c02092e", "deprecated": false, "target": { "function": "CompileKeymap", "file": "src/xkbcomp/keymap.c" }, "signature_version": "v1", "source": "https://github.com/xkbcommon/libxkbcommon/commit/917636b1d0d70205a13f89062b95e3a0fc31d4ff", "digest": { "function_hash": "313427961432042723751513025005151541073", "length": 1332.0 }, "signature_type": "Function" }, { "id": "CVE-2018-15855-97bd6938", "deprecated": false, "target": { "file": "src/xkbcomp/keymap.c" }, "signature_version": "v1", "source": "https://github.com/xkbcommon/libxkbcommon/commit/917636b1d0d70205a13f89062b95e3a0fc31d4ff", "digest": { "threshold": 0.9, "line_hashes": [ "88409033307862462165229164438251216293", "122701994007965251946819529201359975982", "332971833168997577573162901784827898012", "252483941540618463363549744586113690502", "201764178136538960686405894051010879341" ] }, "signature_type": "Line" } ]