ALT-PU-2021-4967-1
Package kernel-modules-nvidia-un-def updated to version 460.32.03-alt1.330247.1 for branch sisyphus in task 264670.
Closed vulnerabilities
Published: 2021-01-08
Modified: 2024-11-21
Modified: 2024-11-21
CVE-2021-1056
NVIDIA GPU Display Driver for Linux, all versions, contains a vulnerability in the kernel mode layer (nvidia.ko) in which it does not completely honor operating system file system permissions to provide GPU device-level isolation, which may lead to denial of service or information disclosure.
Severity: LOW (3.6)Vector: AV:L/AC:L/Au:N/C:P/I:N/A:P
Severity: HIGH (7.1)Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H
References:
- https://lists.debian.org/debian-lts-announce/2022/01/msg00013.html
- https://nvidia.custhelp.com/app/answers/detail/a_id/5142
- https://security.gentoo.org/glsa/202310-02
- https://lists.debian.org/debian-lts-announce/2022/01/msg00013.html
- https://nvidia.custhelp.com/app/answers/detail/a_id/5142
- https://security.gentoo.org/glsa/202310-02