X.Org X Server Out-of-Bounds Memory Access Vulnerability in XKB Key Types Request Validation

A local out-of-bounds memory access vulnerability has been identified in the X.Org X server's validation of XKB key types requests. This flaw allows a local attacker to send a specially crafted request to the X server, potentially leading to the disclosure of sensitive information or causing the server to crash, resulting in a Denial of Service (DoS). In some configurations, this vulnerability could be exploited for more severe impacts.

Impact

Exploitation of this vulnerability can cause a server crash, leading to a Denial of Service. Additionally, the out-of-bounds memory access could allow an attacker to read uninitialized memory, potentially exposing sensitive information such as cryptographic keys or personal data. According to Red Hat, in certain configurations, this vulnerability could be exploited for higher impact outcomes.