X fontserver xfs allows local users to cause a denial of service via malformed input to the server.
Exploitability Analysis: Local
A vulnerability exploitable with only local access requires the attacker to have either
physical access to the vulnerable system or a local (shell) account. Examples of locally
exploitable vulnerabilities are peripheral attacks such as Firewire/USB DMA attacks, and
local privilege escalations (e.g., sudo).
Exploitability Complexity: Low
Specialized access conditions or extenuating circumstances do not exist. The following are examples:
The affected product typically requires access to a wide range of systems and users, possibly anonymous an untrusted (e.g., Internet-facing web or mail server).
The affected configuration is default or ubiquitous. The attack can be performed manually and requires little skill or additional information gathering.
The 'race condition' is a lazy one (i.e., it is technically a race but easily winnable).
Authentication is not required to access and exploit the vulnerability.
Confidentiality Impact: None
There is no impact to the confidentiality of the system.
Integrity Impact: None
There is no impact to the integrity of the system.
Availability Impact: Partial
There is reduced performance or interruptions in resource availability. An example is
a network-based flood attack that permits a limited number of successful connections
to an Internet service.