Debian 10 LTS DLA-3418-1 Critical: NVIDIA Driver DoS and Escalation Fix
debian lts
May 11, 2023
NVIDIA has released a software security update for the NVIDIA GPU Display Driver R390 linux driver branch
Summary
CVE-2022-34670
NVIDIA GPU Display Driver for Linux contains a vulnerability in the
kernel mode layer handler, where an unprivileged regular user can
cause truncation errors when casting a primitive to a primitive of
smaller size causes data to be lost in the conversion, which may
lead to denial of service or information disclosure.
CVE-2022-34674
NVIDIA GPU Display Driver for Linux contains a vulnerability in the
kernel mode layer handler, where a helper function maps more
physical pages than were requested, which may lead to undefined
behavior or an information leak.
CVE-2022-34675
NVIDIA Display Driver for Linux contains a vulnerability in the
Virtual GPU Manager, where it does not check the return value from a
null-pointer dereference, which may lead to denial of service.
CVE-2022-34677
NVIDIA GPU Display Driver for Linux contains a vulnerability in the
kernel mode layer handler, where an unprivileged regular user can
PREVIOUS
NEXT
Severity
critical
Lowest
Low
Medium
High
Critical
Package: nvidia-graphics-drivers-legacy-390xx
Version: 390.157-1~deb10u1
CVE ID: CVE-2022-34670 CVE-2022-34674 CVE-2022-34675 CVE-2022-34677
Debian Bug: 1025281
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!