openSUSE 15.4: 2024:0770-1 Important: NVIDIA Driver And Firmware Issues
opensuse
March 5, 2024
This update for kernel-firmware-nvidia-gspx-G06, nvidia-open-driver-G06-signed fixes the following issues: Update to 550.54.14
Description
This update for kernel-firmware-nvidia-gspx-G06, nvidia-open-driver-G06-signed
fixes the following issues:
Update to 550.54.14
* Added vGPU Host and vGPU Guest support. For vGPU Host, please refer to the
README.vgpu packaged in the vGPU Host Package for more details.
Security issues fixed:
* CVE-2024-0074: A user could trigger a NULL ptr dereference.
* CVE-2024-0075: A user could overwrite the end of a buffer, leading to
crashes or code execution.
* CVE-2022-42265: A unprivileged user could trigger an integer overflow which
could lead to crashes or code execution.
* create /run/udev/static_node-tags/uaccess/nvidia${devid} symlinks also
during modprobing the nvidia module; this changes the issue of not having
access to /dev/nvidia${devid}, when gfxcard has been replaced by a different
gfx card after installing the driver
* provide nvidia-open-driver-G06-kmp (jsc#PED-7117)
* this makes it easy to replace the package from nVidia's CUDA repository with
this presigned...
Read the Full Advisory
Patch
## Patch Instructions:
To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
* SUSE Linux Enterprise Micro for Rancher 5.4
zypper in -t patch SUSE-SLE-Micro-5.4-2024-770=1
* SUSE Linux Enterprise Micro 5.4
zypper in -t patch SUSE-SLE-Micro-5.4-2024-770=1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4
zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2024-770=1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4
zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2024-770=1
* SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4
zypper in -t patch SUSE-SLE-Product-SLED-15-SP4-LTSS-2024-770=1
* SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4
zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2024-770=1
* SUSE Linux Enterprise Server for SAP Applications 15 SP4
zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2024-770=1
* SUSE Manager Proxy 4.3
zypper...
Read the Full AdvisoryPackage List
* SUSE Linux Enterprise Micro for Rancher 5.4 (aarch64 nosrc x86_64)
* kernel-firmware-nvidia-gspx-G06-550.54.14-150400.9.21.1
* SUSE Linux Enterprise Micro for Rancher 5.4 (aarch64 x86_64)
* nvidia-open-driver-G06-signed-kmp-default-550.54.14_k5.14.21_150400.24.108-150400.9.50.1
* nvidia-open-driver-G06-signed-debugsource-550.54.14-150400.9.50.1
* nvidia-open-driver-G06-signed-kmp-default-debuginfo-550.54.14_k5.14.21_150400.24.108-150400.9.50.1
* SUSE Linux Enterprise Micro 5.4 (aarch64 nosrc x86_64)
* kernel-firmware-nvidia-gspx-G06-550.54.14-150400.9.21.1
* SUSE Linux Enterprise Micro 5.4 (aarch64 x86_64)
* nvidia-open-driver-G06-signed-kmp-default-550.54.14_k5.14.21_150400.24.108-150400.9.50.1
* nvidia-open-driver-G06-signed-debugsource-550.54.14-150400.9.50.1
* nvidia-open-driver-G06-signed-kmp-default-debuginfo-550.54.14_k5.14.21_150400.24.108-150400.9.50.1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64 nosrc
x86_64)
*...
Read the Full AdvisoryReferences
* bsc#1220552
* jsc#PED-7117
## References:
* https://www.suse.com/security/cve/CVE-2022-42265.html
* https://www.suse.com/security/cve/CVE-2024-0074.html
* https://www.suse.com/security/cve/CVE-2024-0075.html
* https://bugzilla.suse.com/show_bug.cgi?id=1220552
*
PREVIOUS
NEXT
Severity
important
Lowest
Low
Medium
High
Critical
Announcement ID: SUSE-SU-2024:0770-1
Rating: important
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!