Bug 34796 - xkbcomp new security issues CVE-2018-15853, CVE-2018-15859, CVE-2018-15861 and CVE-2018-15863
Summary: xkbcomp new security issues CVE-2018-15853, CVE-2018-15859, CVE-2018-15861 an...
Status: RESOLVED FIXED
Alias: None
Product: Mageia
Classification: Unclassified
Component: Security (show other bugs)
Version: 9
Hardware: All Linux
Priority: Normal normal
Target Milestone: ---
Assignee: QA Team
QA Contact: Sec team
URL:
Whiteboard: MGA9-64-OK
Keywords: advisory, validated_update
Depends on:
Blocks:
 
Reported: 2025-12-03 14:47 CET by Nicolas Salguero
Modified: 2025-12-05 00:30 CET (History)
2 users (show)

See Also:
Source RPM: xkbcomp-1.4.6-1.mga9.src.rpm
CVE: CVE-2018-15853, CVE-2018-15859, CVE-2018-15861, CVE-2018-15863
Status comment:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Description Nicolas Salguero 2025-12-03 14:47:17 CET 
Reference: https://www.openwall.com/lists/oss-security/2025/12/03/1
Nicolas Salguero 2025-12-03 14:49:03 CET

Whiteboard: (none) => MGA9TOO
Status comment: (none) => Fixed upstream in 1.5.0 and patches available from upstream
CVE: (none) => CVE-2018-15853, CVE-2018-15859, CVE-2018-15861, CVE-2018-15863
Source RPM: (none) => xkbcomp-1.4.7-2.mga10.src.rpm, xkbcomp-1.4.6-1.mga9.src.rpm

Nicolas Salguero 2025-12-03 15:11:16 CET

Source RPM: xkbcomp-1.4.7-2.mga10.src.rpm, xkbcomp-1.4.6-1.mga9.src.rpm => xkbcomp-1.4.6-1.mga9.src.rpm
Assignee: bugsquad => nicolas.salguero
Whiteboard: MGA9TOO => (none)
Version: Cauldron => 9

Comment 1 Nicolas Salguero 2025-12-03 15:29:11 CET 
Suggested advisory:
========================

The updated packages fix a security vulnerability:

Endless recursion in xkbcomp/expr.c resulting in a crash. (CVE-2018-15853)

NULL pointer dereference when parsing invalid atoms in ExprResolveLhs resulting in a crash. (CVE-2018-15859)

NULL pointer dereference in ExprResolveLhs resulting in a crash. (CVE-2018-15861)

NULL pointer dereference in ResolveStateAndPredicate resulting in a crash. (CVE-2018-15863)

References:
https://www.openwall.com/lists/oss-security/2025/12/03/1
========================

Updated packages in core/updates_testing:
========================
xkbcomp-1.4.6-1.1.mga9
xkbcomp-devel-1.4.6-1.1.mga9

from SRPM:
xkbcomp-1.4.6-1.1.mga9.src.rpm

Assignee: nicolas.salguero => qa-bugs
Status comment: Fixed upstream in 1.5.0 and patches available from upstream => (none)
Status: NEW => ASSIGNED

katnatek 2025-12-03 21:37:44 CET

Keywords: (none) => advisory

Comment 2 katnatek 2025-12-03 23:07:00 CET 
RH x86_64 
installing xkbcomp-1.4.6-1.1.mga9.x86_64.rpm from //home/katnatek/qa-testing/x86_64
Preparing...                     ###################################################################################################
      1/1: xkbcomp               ###################################################################################################
      1/1: removing xkbcomp-1.4.6-1.mga9.x86_64
                                 ###################################################################################################

Reboot
The keyboard is working as usual

Looks good to me

Whiteboard: (none) => MGA9-64-OK

Comment 3 Thomas Andrews 2025-12-04 17:14:21 CET 
Validating.

Keywords: (none) => validated_update
CC: (none) => andrewsfarm, sysadmin-bugs

Comment 4 Mageia Robot 2025-12-05 00:30:23 CET 
An update for this issue has been pushed to the Mageia Updates repository.

https://advisories.mageia.org/MGASA-2025-0321.html

Resolution: (none) => FIXED
Status: ASSIGNED => RESOLVED
Note You need to log in before you can comment on or make changes to this bug.