Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 533
Alerts This Week
Warning Icon 1 533

Stay Secure with the Latest Linux Advisories

Filter%20icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

Is continuous patching actually viable?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/156-is-continuous-patching-actually-viable?task=poll.vote&format=json
156
radio
0
[{"id":503,"title":"Delayed updates invite catastrophic breaches.","votes":1,"type":"x","order":1,"pct":50,"resources":[]},{"id":504,"title":"Automated fixes break production environments.","votes":1,"type":"x","order":2,"pct":50,"resources":[]},{"id":505,"title":"Manual approvals cannot keep pace.","votes":0,"type":"x","order":3,"pct":0,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found 11 articles for you...
100

SUSE Reports Major Memory Access Vulnerabilities in nvidia-open-driver-G06

* bsc#1236191 * bsc#1236658 * bsc#1236746 * bsc#1237308 * bsc#1237585 . # Security update for nvidia-open-driver-G06-signed Announcement ID: SUSE-SU-2025:03062-1 Release Date: 2025-09-03T16:06:55Z Rating: important References: * bsc#1236191 * bsc#1236658 * bsc#1236746 * bsc#1237308 * bsc#1237585 * bsc#1239139 * bsc#1239653 * bsc#1241231 * bsc#1242054 * bsc#1243192 * bsc#1244614 * bsc#1246010 * bsc#1246327 * bsc#1247528 * bsc#1247529 * bsc#1247530 * bsc#1247531 * bsc#1247532 Cross-References: * CVE-2025-23277 * CVE-2025-23278 * CVE-2025-23279 * CVE-2025-23283 * CVE-2025-23286 CVSS scores: * CVE-2025-23277 ( SUSE ): 7.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H * CVE-2025-23277 ( NVD ): 7.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H * CVE-2025-23278 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2025-23278 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2025-23279 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2025-23279 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2025-23283 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2025-23283 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2025-23286 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N * CVE-2025-23286 ( NVD ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N Affected Products: * openSUSE Leap 15.5 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP5 LTSS * SUSE Linux Enterprise Server for SAP Applications 15 SP5 An update that solves five vulnerabilities and has 13 security fixes can now be installed. ## Description: This update for nvidia-open-driver-G06-signed fixes thefollowing issues: Updated CUDA variant to 580.65.06: * CVE-2025-23277: Fixed access memory outside bounds permitted under normal use cases in NVIDIA Display Driver (bsc#1247528) * CVE-2025-23278: Fixed improper index validation by issuing a call with crafted parameters in NVIDIA Display Driver (bsc#1247529) * CVE-2025-23286: Fixed invalid memory read in NVIDIA GPU Display Driver (bsc#1247530) * CVE-2025-23283: Fixed stack buffer overflow triggerable by a malicious guest in Virtual GPU Manager in NVIDIA vGPU software (bsc#1247531) * CVE-2025-23279: Fixed race condition that lead to privileges escalations in NVIDIA .run Installer (bsc#1247532) Updated non-CUDA variant to 570.172.08 (bsc#1246327) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.5 zypper in -t patch SUSE-2025-3062=1 * SUSE Linux Enterprise Micro 5.5 zypper in -t patch SUSE-SLE-Micro-5.5-2025-3062=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-ESPOS-2025-3062=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-LTSS-2025-3062=1 * SUSE Linux Enterprise Server 15 SP5 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP5-LTSS-2025-3062=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP5-2025-3062=1 ## Package List: * openSUSE Leap 15.5 (aarch64 x86_64) * nvidia-open-driver-G06-signed-kmp-default-debuginfo-570.172.08_k5.14.21_150500.55.116-150500.3.73.7 * nvidia-open-driver-G06-signed-cuda-kmp-default-580.65.06_k5.14.21_150500.55.116-150500.3.73.7 * nvidia-open-driver-G06-signed-default-devel-570.172.08-150500.3.73.7 * nvidia-open-driver-G06-signed-cuda-default-devel-580.65.06-150500.3.73.7 * nvidia-open-driver-G06-signed-debugsource-570.172.08-150500.3.73.7 * nvidia-open-driver-G06-signed-cuda-kmp-default-debuginfo-580.65.06_k5.14.21_150500.55.116-150500.3.73.7 * nvidia-open-driver-G06-signed-cuda-debugsource-580.65.06-150500.3.73.7 * nv-prefer-signed-open-driver-580.65.06-150500.3.73.7 * nvidia-open-driver-G06-signed-kmp-default-570.172.08_k5.14.21_150500.55.116-150500.3.73.7 * openSUSE Leap 15.5 (aarch64) * nvidia-open-driver-G06-signed-cuda-kmp-64kb-580.65.06_k5.14.21_150500.55.116-150500.3.73.7 * nvidia-open-driver-G06-signed-cuda-kmp-64kb-debuginfo-580.65.06_k5.14.21_150500.55.116-150500.3.73.7 * nvidia-open-driver-G06-signed-cuda-64kb-devel-580.65.06-150500.3.73.7 * nvidia-open-driver-G06-signed-kmp-64kb-debuginfo-570.172.08_k5.14.21_150500.55.116-150500.3.73.7 * nvidia-open-driver-G06-signed-64kb-devel-570.172.08-150500.3.73.7 * nvidia-open-driver-G06-signed-kmp-64kb-570.172.08_k5.14.21_150500.55.116-150500.3.73.7 * SUSE Linux Enterprise Micro 5.5 (aarch64 x86_64) * nvidia-open-driver-G06-signed-kmp-default-debuginfo-570.172.08_k5.14.21_150500.55.116-150500.3.73.7 * nvidia-open-driver-G06-signed-cuda-kmp-default-580.65.06_k5.14.21_150500.55.116-150500.3.73.7 * nvidia-open-driver-G06-signed-debugsource-570.172.08-150500.3.73.7 * nvidia-open-driver-G06-signed-cuda-kmp-default-debuginfo-580.65.06_k5.14.21_150500.55.116-150500.3.73.7 * nvidia-open-driver-G06-signed-cuda-debugsource-580.65.06-150500.3.73.7 * nv-prefer-signed-open-driver-580.65.06-150500.3.73.7 * nvidia-open-driver-G06-signed-kmp-default-570.172.08_k5.14.21_150500.55.116-150500.3.73.7 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (aarch64 x86_64) * nvidia-open-driver-G06-signed-kmp-default-debuginfo-570.172.08_k5.14.21_150500.55.116-150500.3.73.7 * nvidia-open-driver-G06-signed-cuda-kmp-default-580.65.06_k5.14.21_150500.55.116-150500.3.73.7 * nvidia-open-driver-G06-signed-cuda-default-devel-580.65.06-150500.3.73.7 *nvidia-open-driver-G06-signed-default-devel-570.172.08-150500.3.73.7 * nvidia-open-driver-G06-signed-debugsource-570.172.08-150500.3.73.7 * nvidia-open-driver-G06-signed-cuda-kmp-default-debuginfo-580.65.06_k5.14.21_150500.55.116-150500.3.73.7 * nvidia-open-driver-G06-signed-cuda-debugsource-580.65.06-150500.3.73.7 * nv-prefer-signed-open-driver-580.65.06-150500.3.73.7 * nvidia-open-driver-G06-signed-kmp-default-570.172.08_k5.14.21_150500.55.116-150500.3.73.7 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (aarch64) * nvidia-open-driver-G06-signed-cuda-kmp-64kb-580.65.06_k5.14.21_150500.55.116-150500.3.73.7 * nvidia-open-driver-G06-signed-cuda-kmp-64kb-debuginfo-580.65.06_k5.14.21_150500.55.116-150500.3.73.7 * nvidia-open-driver-G06-signed-cuda-64kb-devel-580.65.06-150500.3.73.7 * nvidia-open-driver-G06-signed-kmp-64kb-debuginfo-570.172.08_k5.14.21_150500.55.116-150500.3.73.7 * nvidia-open-driver-G06-signed-64kb-devel-570.172.08-150500.3.73.7 * nvidia-open-driver-G06-signed-kmp-64kb-570.172.08_k5.14.21_150500.55.116-150500.3.73.7 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (aarch64 x86_64) * nvidia-open-driver-G06-signed-kmp-default-debuginfo-570.172.08_k5.14.21_150500.55.116-150500.3.73.7 * nvidia-open-driver-G06-signed-cuda-kmp-default-580.65.06_k5.14.21_150500.55.116-150500.3.73.7 * nvidia-open-driver-G06-signed-cuda-default-devel-580.65.06-150500.3.73.7 * nvidia-open-driver-G06-signed-default-devel-570.172.08-150500.3.73.7 * nvidia-open-driver-G06-signed-debugsource-570.172.08-150500.3.73.7 * nvidia-open-driver-G06-signed-cuda-kmp-default-debuginfo-580.65.06_k5.14.21_150500.55.116-150500.3.73.7 * nvidia-open-driver-G06-signed-cuda-debugsource-580.65.06-150500.3.73.7 * nv-prefer-signed-open-driver-580.65.06-150500.3.73.7 * nvidia-open-driver-G06-signed-kmp-default-570.172.08_k5.14.21_150500.55.116-150500.3.73.7 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (aarch64) * nvidia-open-driver-G06-signed-cuda-kmp-64kb-580.65.06_k5.14.21_150500.55.116-150500.3.73.7 * nvidia-open-driver-G06-signed-cuda-kmp-64kb-debuginfo-580.65.06_k5.14.21_150500.55.116-150500.3.73.7 * nvidia-open-driver-G06-signed-cuda-64kb-devel-580.65.06-150500.3.73.7 * nvidia-open-driver-G06-signed-kmp-64kb-debuginfo-570.172.08_k5.14.21_150500.55.116-150500.3.73.7 * nvidia-open-driver-G06-signed-64kb-devel-570.172.08-150500.3.73.7 * nvidia-open-driver-G06-signed-kmp-64kb-570.172.08_k5.14.21_150500.55.116-150500.3.73.7 * SUSE Linux Enterprise Server 15 SP5 LTSS (aarch64 x86_64) * nvidia-open-driver-G06-signed-kmp-default-debuginfo-570.172.08_k5.14.21_150500.55.116-150500.3.73.7 * nvidia-open-driver-G06-signed-cuda-kmp-default-580.65.06_k5.14.21_150500.55.116-150500.3.73.7 * nvidia-open-driver-G06-signed-cuda-default-devel-580.65.06-150500.3.73.7 * nvidia-open-driver-G06-signed-default-devel-570.172.08-150500.3.73.7 * nvidia-open-driver-G06-signed-debugsource-570.172.08-150500.3.73.7 * nvidia-open-driver-G06-signed-cuda-kmp-default-debuginfo-580.65.06_k5.14.21_150500.55.116-150500.3.73.7 * nvidia-open-driver-G06-signed-cuda-debugsource-580.65.06-150500.3.73.7 * nv-prefer-signed-open-driver-580.65.06-150500.3.73.7 * nvidia-open-driver-G06-signed-kmp-default-570.172.08_k5.14.21_150500.55.116-150500.3.73.7 * SUSE Linux Enterprise Server 15 SP5 LTSS (aarch64) * nvidia-open-driver-G06-signed-cuda-kmp-64kb-580.65.06_k5.14.21_150500.55.116-150500.3.73.7 * nvidia-open-driver-G06-signed-cuda-kmp-64kb-debuginfo-580.65.06_k5.14.21_150500.55.116-150500.3.73.7 * nvidia-open-driver-G06-signed-cuda-64kb-devel-580.65.06-150500.3.73.7 * nvidia-open-driver-G06-signed-kmp-64kb-debuginfo-570.172.08_k5.14.21_150500.55.116-150500.3.73.7 * nvidia-open-driver-G06-signed-64kb-devel-570.172.08-150500.3.73.7 * nvidia-open-driver-G06-signed-kmp-64kb-570.172.08_k5.14.21_150500.55.116-150500.3.73.7 * SUSE Linux Enterprise Server for SAP Applications 15 SP5(x86_64) * nvidia-open-driver-G06-signed-kmp-default-debuginfo-570.172.08_k5.14.21_150500.55.116-150500.3.73.7 * nvidia-open-driver-G06-signed-cuda-kmp-default-580.65.06_k5.14.21_150500.55.116-150500.3.73.7 * nvidia-open-driver-G06-signed-cuda-default-devel-580.65.06-150500.3.73.7 * nvidia-open-driver-G06-signed-default-devel-570.172.08-150500.3.73.7 * nvidia-open-driver-G06-signed-debugsource-570.172.08-150500.3.73.7 * nvidia-open-driver-G06-signed-cuda-kmp-default-debuginfo-580.65.06_k5.14.21_150500.55.116-150500.3.73.7 * nvidia-open-driver-G06-signed-cuda-debugsource-580.65.06-150500.3.73.7 * nv-prefer-signed-open-driver-580.65.06-150500.3.73.7 * nvidia-open-driver-G06-signed-kmp-default-570.172.08_k5.14.21_150500.55.116-150500.3.73.7 ## References: * https://www.suse.com/security/cve/CVE-2025-23277.html * https://www.suse.com/security/cve/CVE-2025-23278.html * https://www.suse.com/security/cve/CVE-2025-23279.html * https://www.suse.com/security/cve/CVE-2025-23283.html * https://www.suse.com/security/cve/CVE-2025-23286.html * https://bugzilla.suse.com/show_bug.cgi?id=1236191 * https://bugzilla.suse.com/show_bug.cgi?id=1236658 * https://bugzilla.suse.com/show_bug.cgi?id=1236746 * https://bugzilla.suse.com/show_bug.cgi?id=1237308 * https://bugzilla.suse.com/show_bug.cgi?id=1237585 * https://bugzilla.suse.com/show_bug.cgi?id=1239139 * https://bugzilla.suse.com/show_bug.cgi?id=1239653 * https://bugzilla.suse.com/show_bug.cgi?id=1241231 * https://bugzilla.suse.com/show_bug.cgi?id=1242054 * https://bugzilla.suse.com/show_bug.cgi?id=1243192 * https://bugzilla.suse.com/show_bug.cgi?id=1244614 * https://bugzilla.suse.com/show_bug.cgi?id=1246010 * https://bugzilla.suse.com/show_bug.cgi?id=1246327 * https://bugzilla.suse.com/show_bug.cgi?id=1247528 * https://bugzilla.suse.com/show_bug.cgi?id=1247529 * https://bugzilla.suse.com/show_bug.cgi?id=1247530 * https://bugzilla.suse.com/show_bug.cgi?id=1247531 *https://bugzilla.suse.com/show_bug.cgi?id=1247532 . The latest essential update from SUSE for the nvidia-open-driver-G06-signed addresses a range of critical vulnerabilities that pose risks to system integrity.. NVIDIA Driver Update,SUSE Security Fix,nvidia-open-driver,Critical NVIDIA Issues. . Severity: Important. LinuxSecurity.com Team

Calendar%202 Sep 03, 2025 Important SuSE
100

SUSE Linux Micro 6.0: 2025:20108-1 important: nvidia driver issues

* bsc#1222972 * bsc#1223356 * bsc#1223454 * bsc#1227417 * bsc#1227419 . # Security update for nvidia-open-driver-G06-signed Announcement ID: SUSE-SU-2025:20108-1 Release Date: 2025-02-03T09:19:19Z Rating: important References: * bsc#1222972 * bsc#1223356 * bsc#1223454 * bsc#1227417 * bsc#1227419 * bsc#1227575 * bsc#1229716 * bsc#1230368 * bsc#1230779 * bsc#1232057 * bsc#1233332 * bsc#1233673 Cross-References: * CVE-2024-0090 * CVE-2024-0091 * CVE-2024-0092 CVSS scores: * CVE-2024-0090 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2024-0090 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-0091 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-0091 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-0092 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-0092 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H Affected Products: * SUSE Linux Micro 6.0 An update that solves three vulnerabilities and has nine fixes can now be installed. ## Description: This update for nvidia-open-driver-G06-signed fixes the following issues: * Make sure the correct FW package is installed on non-CUDA. * only obsolete 555 CUDA driver/firmware packages * For CUDA: update version to 565.57.01 * Add 'dummy' firmware package on SLE to work around update issues. On SLE, the firmware is installed directly from an NVIDIA-hosted repo. * Improve handling of conflicts between different flavors (gfx vs. CUDA) (bsc#1233332). * Update to 550.135 (bsc#1233673) * Update to 550.127.05 (bsc#1232057) * Fixed a bug which could cause applications using GBM to crash when running with nvidia-drm.modeset=0. * cuda-flavor provide also nvidia-open-driver-G06-kmp-$flavor = %version to workaround broken cuda-drivers * For CUDA update version to 560.35.03 * nv-prefer-signed-open-driver: * added specicic versions ofcuda-drivers/cuda-drivers-xxx as preconditions for requiring specific version of nvidia-compute-G06 * nv-prefer-signed-open-driver: * no longer require a specific version of nvidia-open-driver-G06-signed-cuda- kmp, so it can select the correct open driver KMP matching the cuda-runtime version * cuda-flavor: * added nvidia-compute-G06 = %version to preconditions for requiring kernel- firmware-nvidia-gspx-G06, since nvidia-compute-utils-G06 does not have a version-specific requires on nvidia-compute-G06 * cuda-flavor: * require kernel-firmware-nvidia-gspx-G06 instead of kernel-firmware-nvidia- gspx-G06-cuda (which provides also kernel-firmware-nvidia-gspx-G06) * trigger removal of driver modules also on kernel-firmware-nvidia-gspx-G06 * no longer hard-require kernel firmware package, but install it automatically once nvidia-compute-utils-G06 gets installed * trigger removal of driver modules with non-existing or wrong firmware when (new) firmware gets installed * Update to 550.120 (bsc#1230779) * Fixed a bug that could cause kernel crashes upon attempting KMS operations through DRM when nvidia_drm was loaded with modeset=0. * CUDA build: removed entries from pci_ids-555.42.06 since this is doing more harm than benefit (bsc#1230368) * For CUDA (preamble file): * added: Provides: nvidia-open-driver-G06-signed-cuda-kmp-$flavor = %version which is needed for 'zypper install = ' * added: Provides/Conflicts: nvidia-open-driver-G06-signed-kmp-$flavor = %version useful for containers * reverted CUDA update version to 560.x.y due to changes in CUDA repository with CUDA 12.6/560.x.y drivers * For CUDA update version to 560.35.03 * Update to 550.107.02 (bsc#1229716) * For CUDA update version to 560.28.03 * Update to 550.100 (bsc#1227575) * Fixed a bug that caused OpenGL triple buffering to behave like double buffering. * To avoid issues with missing dependencies when no CUDA repo is present make thedependecy to nvidia-compute-G06 conditional. * CUDA is not available for Tumbleweed, exclude the build of the cuda flavor. * preamble: let the -cuda flavor KMP require the -cuda flavor firmware * Add a second flavor for building the kernel module versions used by CUDA. The kmp targetting CUDA contains '-cuda' in its name to track its versions separately from the graphics kmp. (bsc#1227417) * Provide the meta package nv-prefer-signed-open-driver to make sure the latest available SUSE-build open driver is installed - independent of the latest available open driver version in he CUDA repository. Rationale: The package cuda-runtime provides the link between CUDA and the kernel driver version through a Requires: cuda-drivers > = %version This implies that a CUDA version will run withany kernel driver version equal or higher than a base version. nvidia-compute-G06 provides the glue layer between CUDA and a specific version of he kernel driver both by providing a set of base libraries and by requiring a specific kernel version. 'cuda-drivers' (provided by nvidia-compute-utils-G06) requires an unversioned nvidia- compute-G06. With this, the resolver will install the latest available and applicable nvidia-compute-G06. nv-prefer-signed-open-driver then represents the latest available open driver version and restricts the nvidia- compute-G06 version to it. (bsc#1227419) * Security Update 550.90.07 (bsc#1223356) [CVE-2024-0090, CVE-2024-0091, CVE-2024-0092] * Update to 550.78 (bsc#1223454) * Update to 550.76 (bsc#1222972) * Update to 550.67 ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.0 zypper in -t patch SUSE-SLE-Micro-6.0-174=1 ## Package List: * SUSE Linux Micro 6.0 (aarch64 x86_64) *nvidia-open-driver-G06-signed-kmp-default-550.142_k6.4.0_20-1.1 * nvidia-open-driver-G06-signed-kmp-default-debuginfo-550.142_k6.4.0_20-1.1 * nvidia-open-driver-G06-signed-debugsource-550.142-1.1 ## References: * https://www.suse.com/security/cve/CVE-2024-0090.html * https://www.suse.com/security/cve/CVE-2024-0091.html * https://www.suse.com/security/cve/CVE-2024-0092.html * https://bugzilla.suse.com/show_bug.cgi?id=1222972 * https://bugzilla.suse.com/show_bug.cgi?id=1223356 * https://bugzilla.suse.com/show_bug.cgi?id=1223454 * https://bugzilla.suse.com/show_bug.cgi?id=1227417 * https://bugzilla.suse.com/show_bug.cgi?id=1227419 * https://bugzilla.suse.com/show_bug.cgi?id=1227575 * https://bugzilla.suse.com/show_bug.cgi?id=1229716 * https://bugzilla.suse.com/show_bug.cgi?id=1230368 * https://bugzilla.suse.com/show_bug.cgi?id=1230779 * https://bugzilla.suse.com/show_bug.cgi?id=1232057 * https://bugzilla.suse.com/show_bug.cgi?id=1233332 * https://bugzilla.suse.com/show_bug.cgi?id=1233673 . SUSE Linux Micro 6.0 security alert tackling severe problems with the nvidia driver, featuring essential patches and upgrades.. SUSE Linux Micro,nvidia driver update,security vulnerabilities,security patch. . Severity: Important. LinuxSecurity.com Team

Calendar%202 Jun 04, 2025 Important SuSE
100

SUSE Linux Micro: 2025:20108-1 important: nvidia-open-driver-G06-signed

* bsc#1222972 * bsc#1223356 * bsc#1223454 * bsc#1227417 * bsc#1227419 . # Security update for nvidia-open-driver-G06-signed Announcement ID: SUSE-SU-2025:20108-1 Release Date: 2025-02-03T09:19:19Z Rating: important References: * bsc#1222972 * bsc#1223356 * bsc#1223454 * bsc#1227417 * bsc#1227419 * bsc#1227575 * bsc#1229716 * bsc#1230368 * bsc#1230779 * bsc#1232057 * bsc#1233332 * bsc#1233673 Cross-References: * CVE-2024-0090 * CVE-2024-0091 * CVE-2024-0092 CVSS scores: * CVE-2024-0090 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2024-0090 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-0091 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-0091 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-0092 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-0092 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H Affected Products: * SUSE Linux Micro 6.0 An update that solves three vulnerabilities and has nine fixes can now be installed. ## Description: This update for nvidia-open-driver-G06-signed fixes the following issues: * Make sure the correct FW package is installed on non-CUDA. * only obsolete 555 CUDA driver/firmware packages * For CUDA: update version to 565.57.01 * Add 'dummy' firmware package on SLE to work around update issues. On SLE, the firmware is installed directly from an NVIDIA-hosted repo. * Improve handling of conflicts between different flavors (gfx vs. CUDA) (bsc#1233332). * Update to 550.135 (bsc#1233673) * Update to 550.127.05 (bsc#1232057) * Fixed a bug which could cause applications using GBM to crash when running with nvidia-drm.modeset=0. * cuda-flavor provide also nvidia-open-driver-G06-kmp-$flavor = %version to workaround broken cuda-drivers * For CUDA update version to 560.35.03 * nv-prefer-signed-open-driver: * added specicic versions ofcuda-drivers/cuda-drivers-xxx as preconditions for requiring specific version of nvidia-compute-G06 * nv-prefer-signed-open-driver: * no longer require a specific version of nvidia-open-driver-G06-signed-cuda- kmp, so it can select the correct open driver KMP matching the cuda-runtime version * cuda-flavor: * added nvidia-compute-G06 = %version to preconditions for requiring kernel- firmware-nvidia-gspx-G06, since nvidia-compute-utils-G06 does not have a version-specific requires on nvidia-compute-G06 * cuda-flavor: * require kernel-firmware-nvidia-gspx-G06 instead of kernel-firmware-nvidia- gspx-G06-cuda (which provides also kernel-firmware-nvidia-gspx-G06) * trigger removal of driver modules also on kernel-firmware-nvidia-gspx-G06 * no longer hard-require kernel firmware package, but install it automatically once nvidia-compute-utils-G06 gets installed * trigger removal of driver modules with non-existing or wrong firmware when (new) firmware gets installed * Update to 550.120 (bsc#1230779) * Fixed a bug that could cause kernel crashes upon attempting KMS operations through DRM when nvidia_drm was loaded with modeset=0. * CUDA build: removed entries from pci_ids-555.42.06 since this is doing more harm than benefit (bsc#1230368) * For CUDA (preamble file): * added: Provides: nvidia-open-driver-G06-signed-cuda-kmp-$flavor = %version which is needed for 'zypper install = ' * added: Provides/Conflicts: nvidia-open-driver-G06-signed-kmp-$flavor = %version useful for containers * reverted CUDA update version to 560.x.y due to changes in CUDA repository with CUDA 12.6/560.x.y drivers * For CUDA update version to 560.35.03 * Update to 550.107.02 (bsc#1229716) * For CUDA update version to 560.28.03 * Update to 550.100 (bsc#1227575) * Fixed a bug that caused OpenGL triple buffering to behave like double buffering. * To avoid issues with missing dependencies when no CUDA repo is present make thedependecy to nvidia-compute-G06 conditional. * CUDA is not available for Tumbleweed, exclude the build of the cuda flavor. * preamble: let the -cuda flavor KMP require the -cuda flavor firmware * Add a second flavor for building the kernel module versions used by CUDA. The kmp targetting CUDA contains '-cuda' in its name to track its versions separately from the graphics kmp. (bsc#1227417) * Provide the meta package nv-prefer-signed-open-driver to make sure the latest available SUSE-build open driver is installed - independent of the latest available open driver version in he CUDA repository. Rationale: The package cuda-runtime provides the link between CUDA and the kernel driver version through a Requires: cuda-drivers > = %version This implies that a CUDA version will run withany kernel driver version equal or higher than a base version. nvidia-compute-G06 provides the glue layer between CUDA and a specific version of he kernel driver both by providing a set of base libraries and by requiring a specific kernel version. 'cuda-drivers' (provided by nvidia-compute-utils-G06) requires an unversioned nvidia- compute-G06. With this, the resolver will install the latest available and applicable nvidia-compute-G06. nv-prefer-signed-open-driver then represents the latest available open driver version and restricts the nvidia- compute-G06 version to it. (bsc#1227419) * Security Update 550.90.07 (bsc#1223356) [CVE-2024-0090, CVE-2024-0091, CVE-2024-0092] * Update to 550.78 (bsc#1223454) * Update to 550.76 (bsc#1222972) * Update to 550.67 ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.0 zypper in -t patch SUSE-SLE-Micro-6.0-174=1 ## Package List: * SUSE Linux Micro 6.0 (aarch64 x86_64) * nvidia-open-driver-G06-signed-debugsource-550.142-1.1 * nvidia-open-driver-G06-signed-kmp-default-550.142_k6.4.0_20-1.1 * nvidia-open-driver-G06-signed-kmp-default-debuginfo-550.142_k6.4.0_20-1.1 ## References: * https://www.suse.com/security/cve/CVE-2024-0090.html * https://www.suse.com/security/cve/CVE-2024-0091.html * https://www.suse.com/security/cve/CVE-2024-0092.html * https://bugzilla.suse.com/show_bug.cgi?id=1222972 * https://bugzilla.suse.com/show_bug.cgi?id=1223356 * https://bugzilla.suse.com/show_bug.cgi?id=1223454 * https://bugzilla.suse.com/show_bug.cgi?id=1227417 * https://bugzilla.suse.com/show_bug.cgi?id=1227419 * https://bugzilla.suse.com/show_bug.cgi?id=1227575 * https://bugzilla.suse.com/show_bug.cgi?id=1229716 * https://bugzilla.suse.com/show_bug.cgi?id=1230368 * https://bugzilla.suse.com/show_bug.cgi?id=1230779 * https://bugzilla.suse.com/show_bug.cgi?id=1232057 * https://bugzilla.suse.com/show_bug.cgi?id=1233332 * https://bugzilla.suse.com/show_bug.cgi?id=1233673 . This notification delivers an essential enhancement for the NVIDIA open driver on SUSE Linux Micro 6.0, addressing multiple concerns.. nvidia open driver, SUSE update, Linux driver security, driver vulnerabilities. . Severity: Important. LinuxSecurity.com Team

Calendar%202 Jun 04, 2025 Important SuSE
202

openSUSE Leap 15.6: SUSE-SU-2025:0207-1 important: nvidia driver update

An update that solves five vulnerabilities can now be installed.. # Security update for nvidia-open-driver-G06-signed Announcement ID: SUSE-SU-2025:0207-1 Release Date: 2025-01-21T14:44:07Z Rating: important References: * bsc#1235461 * bsc#1235871 Cross-References: * CVE-2024-0131 * CVE-2024-0147 * CVE-2024-0149 * CVE-2024-0150 * CVE-2024-53869 CVSS scores: * CVE-2024-0131 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2024-0147 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-0149 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2024-0150 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2024-53869 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H Affected Products: * Basesystem Module 15-SP6 * openSUSE Leap 15.6 * Public Cloud Module 15-SP6 * SUSE Linux Enterprise Desktop 15 SP6 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 An update that solves five vulnerabilities can now be installed. ## Description: This update for nvidia-open-driver-G06-signed fixes the following issues: * Update to 550.144.03 (bsc#1235461, bsc#1235871) * fixes CVE-2024-0131, CVE-2024-0147, CVE-2024-0149, CVE-2024-0150, CVE-2024-53869 ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * Basesystem Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP6-2025-207=1 * Public Cloud Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Public-Cloud-15-SP6-2025-207=1 * openSUSE Leap 15.6 zypper in -t patch SUSE-2025-207=1 openSUSE-SLE-15.6-2025-207=1 ## Package List: * Basesystem Module 15-SP6 (aarch64 x86_64) * nvidia-open-driver-G06-signed-debugsource-550.144.03-150600.3.29.2 *nv-prefer-signed-open-driver-565.57.01-150600.3.29.2 * nvidia-open-driver-G06-signed-kmp-default-debuginfo-550.144.03_k6.4.0_150600.21-150600.3.29.2 * nvidia-open-driver-G06-signed-kmp-default-550.144.03_k6.4.0_150600.21-150600.3.29.2 * nvidia-open-driver-G06-signed-cuda-kmp-default-565.57.01_k6.4.0_150600.21-150600.3.29.2 * kernel-firmware-nvidia-gspx-G06-cuda-565.57.01-150600.3.29.2 * nvidia-open-driver-G06-signed-cuda-kmp-default-debuginfo-565.57.01_k6.4.0_150600.21-150600.3.29.2 * nvidia-open-driver-G06-signed-cuda-debugsource-565.57.01-150600.3.29.2 * nvidia-open-driver-G06-signed-default-devel-550.144.03-150600.3.29.2 * nvidia-open-driver-G06-signed-cuda-default-devel-565.57.01-150600.3.29.2 * Basesystem Module 15-SP6 (aarch64) * nvidia-open-driver-G06-signed-kmp-64kb-debuginfo-550.144.03_k6.4.0_150600.21-150600.3.29.2 * nvidia-open-driver-G06-signed-kmp-64kb-550.144.03_k6.4.0_150600.21-150600.3.29.2 * nvidia-open-driver-G06-signed-cuda-kmp-64kb-565.57.01_k6.4.0_150600.21-150600.3.29.2 * nvidia-open-driver-G06-signed-64kb-devel-550.144.03-150600.3.29.2 * nvidia-open-driver-G06-signed-cuda-kmp-64kb-debuginfo-565.57.01_k6.4.0_150600.21-150600.3.29.2 * nvidia-open-driver-G06-signed-cuda-64kb-devel-565.57.01-150600.3.29.2 * Public Cloud Module 15-SP6 (x86_64) * nvidia-open-driver-G06-signed-cuda-azure-devel-565.57.01-150600.3.29.2 * nvidia-open-driver-G06-signed-azure-devel-550.144.03-150600.3.29.2 * nvidia-open-driver-G06-signed-kmp-azure-debuginfo-550.144.03_k6.4.0_150600.6-150600.3.29.2 * nvidia-open-driver-G06-signed-cuda-kmp-azure-565.57.01_k6.4.0_150600.6-150600.3.29.2 * nvidia-open-driver-G06-signed-cuda-kmp-azure-debuginfo-565.57.01_k6.4.0_150600.6-150600.3.29.2 * nvidia-open-driver-G06-signed-kmp-azure-550.144.03_k6.4.0_150600.6-150600.3.29.2 * openSUSE Leap 15.6 (x86_64) * nvidia-open-driver-G06-signed-cuda-azure-devel-565.57.01-150600.3.29.2 *nvidia-open-driver-G06-signed-azure-devel-550.144.03-150600.3.29.2 * nvidia-open-driver-G06-signed-kmp-azure-debuginfo-550.144.03_k6.4.0_150600.6-150600.3.29.2 * nvidia-open-driver-G06-signed-cuda-kmp-azure-debuginfo-565.57.01_k6.4.0_150600.6-150600.3.29.2 * nvidia-open-driver-G06-signed-kmp-azure-550.144.03_k6.4.0_150600.6-150600.3.29.2 * nvidia-open-driver-G06-signed-cuda-kmp-azure-565.57.01_k6.4.0_150600.6-150600.3.29.2 * openSUSE Leap 15.6 (aarch64 x86_64) * nvidia-open-driver-G06-signed-kmp-default-debuginfo-550.144.03_k6.4.0_150600.21-150600.3.29.2 * nvidia-open-driver-G06-signed-debugsource-550.144.03-150600.3.29.2 * nv-prefer-signed-open-driver-565.57.01-150600.3.29.2 * nvidia-open-driver-G06-signed-kmp-default-550.144.03_k6.4.0_150600.21-150600.3.29.2 * kernel-firmware-nvidia-gspx-G06-cuda-565.57.01-150600.3.29.2 * nvidia-open-driver-G06-signed-cuda-kmp-default-565.57.01_k6.4.0_150600.21-150600.3.29.2 * nvidia-open-driver-G06-signed-cuda-kmp-default-debuginfo-565.57.01_k6.4.0_150600.21-150600.3.29.2 * nvidia-open-driver-G06-signed-cuda-debugsource-565.57.01-150600.3.29.2 * nvidia-open-driver-G06-signed-default-devel-550.144.03-150600.3.29.2 * nvidia-open-driver-G06-signed-cuda-default-devel-565.57.01-150600.3.29.2 * openSUSE Leap 15.6 (aarch64) * nvidia-open-driver-G06-signed-kmp-64kb-debuginfo-550.144.03_k6.4.0_150600.21-150600.3.29.2 * nvidia-open-driver-G06-signed-kmp-64kb-550.144.03_k6.4.0_150600.21-150600.3.29.2 * nvidia-open-driver-G06-signed-cuda-kmp-64kb-565.57.01_k6.4.0_150600.21-150600.3.29.2 * nvidia-open-driver-G06-signed-64kb-devel-550.144.03-150600.3.29.2 * nvidia-open-driver-G06-signed-cuda-kmp-64kb-debuginfo-565.57.01_k6.4.0_150600.21-150600.3.29.2 * nvidia-open-driver-G06-signed-cuda-64kb-devel-565.57.01-150600.3.29.2 ## References: * https://www.suse.com/security/cve/CVE-2024-0131.html * https://www.suse.com/security/cve/CVE-2024-0147.html * https://www.suse.com/security/cve/CVE-2024-0149.html * https://www.suse.com/security/cve/CVE-2024-0150.html * https://www.suse.com/security/cve/CVE-2024-53869.html * https://bugzilla.suse.com/show_bug.cgi?id=1235461 * https://bugzilla.suse.com/show_bug.cgi?id=1235871 . The latest update for nvidia-open-driver-G06-signed addresses critical vulnerabilities in openSUSE platforms, significantly improving system protection.. openSUSE, driver update, security advisory, system security. . Severity: Important. LinuxSecurity.com Team

Calendar%202 Jan 21, 2025 Important OpenSUSE
100

SUSE: 2025:0208-1 important: nvidia-open-driver-G06-signed security fix

* bsc#1235461 * bsc#1235871 Cross-References: * CVE-2024-0131 . # Security update for nvidia-open-driver-G06-signed Announcement ID: SUSE-SU-2025:0208-1 Release Date: 2025-01-21T14:44:38Z Rating: important References: * bsc#1235461 * bsc#1235871 Cross-References: * CVE-2024-0131 * CVE-2024-0147 * CVE-2024-0149 * CVE-2024-0150 * CVE-2024-53869 CVSS scores: * CVE-2024-0131 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2024-0147 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-0149 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2024-0150 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2024-53869 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H Affected Products: * openSUSE Leap 15.5 * Public Cloud Module 15-SP5 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP5 LTSS * SUSE Linux Enterprise Server for SAP Applications 15 SP5 An update that solves five vulnerabilities can now be installed. ## Description: This update for nvidia-open-driver-G06-signed fixes the following issues: * Update to 550.144.03 (bsc#1235461, bsc#1235871) * fixes CVE-2024-0131, CVE-2024-0147, CVE-2024-0149, CVE-2024-0150, CVE-2024-53869 ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.5 zypper in -t patch SUSE-2025-208=1 * SUSE Linux Enterprise Micro 5.5 zypper in -t patch SUSE-SLE-Micro-5.5-2025-208=1 * Public Cloud Module 15-SP5 zypper in -t patch SUSE-SLE-Module-Public-Cloud-15-SP5-2025-208=1 * SUSE Linux Enterprise HighPerformance Computing ESPOS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-ESPOS-2025-208=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-LTSS-2025-208=1 * SUSE Linux Enterprise Server 15 SP5 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP5-LTSS-2025-208=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP5-2025-208=1 ## Package List: * openSUSE Leap 15.5 (x86_64) * nvidia-open-driver-G06-signed-cuda-kmp-azure-565.57.01_k5.14.21_150500.31-150500.3.70.2 * nvidia-open-driver-G06-signed-cuda-kmp-azure-debuginfo-565.57.01_k5.14.21_150500.31-150500.3.70.2 * nvidia-open-driver-G06-signed-cuda-azure-devel-565.57.01-150500.3.70.2 * nvidia-open-driver-G06-signed-kmp-azure-debuginfo-550.144.03_k5.14.21_150500.31-150500.3.70.2 * nvidia-open-driver-G06-signed-azure-devel-550.144.03-150500.3.70.2 * nvidia-open-driver-G06-signed-kmp-azure-550.144.03_k5.14.21_150500.31-150500.3.70.2 * openSUSE Leap 15.5 (aarch64 x86_64) * kernel-firmware-nvidia-gspx-G06-cuda-565.57.01-150500.3.70.2 * nvidia-open-driver-G06-signed-cuda-debugsource-565.57.01-150500.3.70.2 * nvidia-open-driver-G06-signed-debugsource-550.144.03-150500.3.70.2 * nvidia-open-driver-G06-signed-kmp-default-debuginfo-550.144.03_k5.14.21_150500.53-150500.3.70.2 * nvidia-open-driver-G06-signed-default-devel-550.144.03-150500.3.70.2 * nvidia-open-driver-G06-signed-kmp-default-550.144.03_k5.14.21_150500.53-150500.3.70.2 * nvidia-open-driver-G06-signed-cuda-default-devel-565.57.01-150500.3.70.2 * nvidia-open-driver-G06-signed-cuda-kmp-default-565.57.01_k5.14.21_150500.53-150500.3.70.2 * nvidia-open-driver-G06-signed-cuda-kmp-default-debuginfo-565.57.01_k5.14.21_150500.53-150500.3.70.2 * nv-prefer-signed-open-driver-565.57.01-150500.3.70.2 * openSUSE Leap 15.5 (aarch64) * nvidia-open-driver-G06-signed-64kb-devel-550.144.03-150500.3.70.2 * nvidia-open-driver-G06-signed-cuda-kmp-64kb-debuginfo-565.57.01_k5.14.21_150500.53-150500.3.70.2 * nvidia-open-driver-G06-signed-kmp-64kb-debuginfo-550.144.03_k5.14.21_150500.53-150500.3.70.2 * nvidia-open-driver-G06-signed-cuda-64kb-devel-565.57.01-150500.3.70.2 * nvidia-open-driver-G06-signed-kmp-64kb-550.144.03_k5.14.21_150500.53-150500.3.70.2 * nvidia-open-driver-G06-signed-cuda-kmp-64kb-565.57.01_k5.14.21_150500.53-150500.3.70.2 * SUSE Linux Enterprise Micro 5.5 (aarch64 x86_64) * nv-prefer-signed-open-driver-565.57.01-150500.3.70.2 * kernel-firmware-nvidia-gspx-G06-cuda-565.57.01-150500.3.70.2 * nvidia-open-driver-G06-signed-cuda-debugsource-565.57.01-150500.3.70.2 * nvidia-open-driver-G06-signed-debugsource-550.144.03-150500.3.70.2 * nvidia-open-driver-G06-signed-kmp-default-debuginfo-550.144.03_k5.14.21_150500.53-150500.3.70.2 * nvidia-open-driver-G06-signed-kmp-default-550.144.03_k5.14.21_150500.53-150500.3.70.2 * nvidia-open-driver-G06-signed-cuda-kmp-default-565.57.01_k5.14.21_150500.53-150500.3.70.2 * nvidia-open-driver-G06-signed-cuda-kmp-default-debuginfo-565.57.01_k5.14.21_150500.53-150500.3.70.2 * Public Cloud Module 15-SP5 (x86_64) * nvidia-open-driver-G06-signed-cuda-kmp-azure-565.57.01_k5.14.21_150500.31-150500.3.70.2 * nvidia-open-driver-G06-signed-cuda-kmp-azure-debuginfo-565.57.01_k5.14.21_150500.31-150500.3.70.2 * nvidia-open-driver-G06-signed-cuda-azure-devel-565.57.01-150500.3.70.2 * nvidia-open-driver-G06-signed-kmp-azure-debuginfo-550.144.03_k5.14.21_150500.31-150500.3.70.2 * nvidia-open-driver-G06-signed-azure-devel-550.144.03-150500.3.70.2 * nvidia-open-driver-G06-signed-kmp-azure-550.144.03_k5.14.21_150500.31-150500.3.70.2 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (aarch64 x86_64) * kernel-firmware-nvidia-gspx-G06-cuda-565.57.01-150500.3.70.2 * nvidia-open-driver-G06-signed-cuda-debugsource-565.57.01-150500.3.70.2 *nvidia-open-driver-G06-signed-debugsource-550.144.03-150500.3.70.2 * nvidia-open-driver-G06-signed-kmp-default-debuginfo-550.144.03_k5.14.21_150500.53-150500.3.70.2 * nvidia-open-driver-G06-signed-default-devel-550.144.03-150500.3.70.2 * nvidia-open-driver-G06-signed-cuda-default-devel-565.57.01-150500.3.70.2 * nvidia-open-driver-G06-signed-kmp-default-550.144.03_k5.14.21_150500.53-150500.3.70.2 * nvidia-open-driver-G06-signed-cuda-kmp-default-565.57.01_k5.14.21_150500.53-150500.3.70.2 * nvidia-open-driver-G06-signed-cuda-kmp-default-debuginfo-565.57.01_k5.14.21_150500.53-150500.3.70.2 * nv-prefer-signed-open-driver-565.57.01-150500.3.70.2 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (aarch64) * nvidia-open-driver-G06-signed-64kb-devel-550.144.03-150500.3.70.2 * nvidia-open-driver-G06-signed-cuda-kmp-64kb-debuginfo-565.57.01_k5.14.21_150500.53-150500.3.70.2 * nvidia-open-driver-G06-signed-kmp-64kb-debuginfo-550.144.03_k5.14.21_150500.53-150500.3.70.2 * nvidia-open-driver-G06-signed-cuda-64kb-devel-565.57.01-150500.3.70.2 * nvidia-open-driver-G06-signed-kmp-64kb-550.144.03_k5.14.21_150500.53-150500.3.70.2 * nvidia-open-driver-G06-signed-cuda-kmp-64kb-565.57.01_k5.14.21_150500.53-150500.3.70.2 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (aarch64 x86_64) * kernel-firmware-nvidia-gspx-G06-cuda-565.57.01-150500.3.70.2 * nvidia-open-driver-G06-signed-cuda-debugsource-565.57.01-150500.3.70.2 * nvidia-open-driver-G06-signed-debugsource-550.144.03-150500.3.70.2 * nvidia-open-driver-G06-signed-kmp-default-debuginfo-550.144.03_k5.14.21_150500.53-150500.3.70.2 * nvidia-open-driver-G06-signed-default-devel-550.144.03-150500.3.70.2 * nvidia-open-driver-G06-signed-cuda-default-devel-565.57.01-150500.3.70.2 * nvidia-open-driver-G06-signed-kmp-default-550.144.03_k5.14.21_150500.53-150500.3.70.2 * nvidia-open-driver-G06-signed-cuda-kmp-default-565.57.01_k5.14.21_150500.53-150500.3.70.2 *nvidia-open-driver-G06-signed-cuda-kmp-default-debuginfo-565.57.01_k5.14.21_150500.53-150500.3.70.2 * nv-prefer-signed-open-driver-565.57.01-150500.3.70.2 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (aarch64) * nvidia-open-driver-G06-signed-64kb-devel-550.144.03-150500.3.70.2 * nvidia-open-driver-G06-signed-cuda-kmp-64kb-debuginfo-565.57.01_k5.14.21_150500.53-150500.3.70.2 * nvidia-open-driver-G06-signed-kmp-64kb-debuginfo-550.144.03_k5.14.21_150500.53-150500.3.70.2 * nvidia-open-driver-G06-signed-cuda-64kb-devel-565.57.01-150500.3.70.2 * nvidia-open-driver-G06-signed-kmp-64kb-550.144.03_k5.14.21_150500.53-150500.3.70.2 * nvidia-open-driver-G06-signed-cuda-kmp-64kb-565.57.01_k5.14.21_150500.53-150500.3.70.2 * SUSE Linux Enterprise Server 15 SP5 LTSS (aarch64 x86_64) * kernel-firmware-nvidia-gspx-G06-cuda-565.57.01-150500.3.70.2 * nvidia-open-driver-G06-signed-cuda-debugsource-565.57.01-150500.3.70.2 * nvidia-open-driver-G06-signed-debugsource-550.144.03-150500.3.70.2 * nvidia-open-driver-G06-signed-kmp-default-debuginfo-550.144.03_k5.14.21_150500.53-150500.3.70.2 * nvidia-open-driver-G06-signed-default-devel-550.144.03-150500.3.70.2 * nvidia-open-driver-G06-signed-cuda-default-devel-565.57.01-150500.3.70.2 * nvidia-open-driver-G06-signed-kmp-default-550.144.03_k5.14.21_150500.53-150500.3.70.2 * nvidia-open-driver-G06-signed-cuda-kmp-default-565.57.01_k5.14.21_150500.53-150500.3.70.2 * nvidia-open-driver-G06-signed-cuda-kmp-default-debuginfo-565.57.01_k5.14.21_150500.53-150500.3.70.2 * nv-prefer-signed-open-driver-565.57.01-150500.3.70.2 * SUSE Linux Enterprise Server 15 SP5 LTSS (aarch64) * nvidia-open-driver-G06-signed-64kb-devel-550.144.03-150500.3.70.2 * nvidia-open-driver-G06-signed-cuda-kmp-64kb-debuginfo-565.57.01_k5.14.21_150500.53-150500.3.70.2 * nvidia-open-driver-G06-signed-kmp-64kb-debuginfo-550.144.03_k5.14.21_150500.53-150500.3.70.2 *nvidia-open-driver-G06-signed-cuda-64kb-devel-565.57.01-150500.3.70.2 * nvidia-open-driver-G06-signed-kmp-64kb-550.144.03_k5.14.21_150500.53-150500.3.70.2 * nvidia-open-driver-G06-signed-cuda-kmp-64kb-565.57.01_k5.14.21_150500.53-150500.3.70.2 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 (x86_64) * kernel-firmware-nvidia-gspx-G06-cuda-565.57.01-150500.3.70.2 * nvidia-open-driver-G06-signed-cuda-debugsource-565.57.01-150500.3.70.2 * nvidia-open-driver-G06-signed-debugsource-550.144.03-150500.3.70.2 * nvidia-open-driver-G06-signed-kmp-default-debuginfo-550.144.03_k5.14.21_150500.53-150500.3.70.2 * nvidia-open-driver-G06-signed-default-devel-550.144.03-150500.3.70.2 * nvidia-open-driver-G06-signed-cuda-default-devel-565.57.01-150500.3.70.2 * nvidia-open-driver-G06-signed-kmp-default-550.144.03_k5.14.21_150500.53-150500.3.70.2 * nvidia-open-driver-G06-signed-cuda-kmp-default-565.57.01_k5.14.21_150500.53-150500.3.70.2 * nvidia-open-driver-G06-signed-cuda-kmp-default-debuginfo-565.57.01_k5.14.21_150500.53-150500.3.70.2 * nv-prefer-signed-open-driver-565.57.01-150500.3.70.2 ## References: * https://www.suse.com/security/cve/CVE-2024-0131.html * https://www.suse.com/security/cve/CVE-2024-0147.html * https://www.suse.com/security/cve/CVE-2024-0149.html * https://www.suse.com/security/cve/CVE-2024-0150.html * https://www.suse.com/security/cve/CVE-2024-53869.html * https://bugzilla.suse.com/show_bug.cgi?id=1235461 * https://bugzilla.suse.com/show_bug.cgi?id=1235871 . Latest patch for nvidia-open-driver-G06-signed resolving key vulnerabilities within SUSE offerings. Safeguard your infrastructure.. SUSE Updates,nvidia driver updates,security advisories,software vulnerabilities,system security. . Severity: Important. LinuxSecurity.com Team

Calendar%202 Jan 21, 2025 Important SuSE
100

SUSE: 2024:2005-1 Important: Multiple Security Fixes for NVIDIA Drivers

* bsc#1223356 Cross-References: * CVE-2024-0090 * CVE-2024-0091 . # Security update for kernel-firmware-nvidia-gspx-G06, nvidia-open- driver-G06-signed Announcement ID: SUSE-SU-2024:2005-1 Rating: important References: * bsc#1223356 Cross-References: * CVE-2024-0090 * CVE-2024-0091 * CVE-2024-0092 CVSS scores: * CVE-2024-0090 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2024-0091 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-0092 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H Affected Products: * openSUSE Leap 15.4 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro 5.4 * SUSE Linux Enterprise Micro for Rancher 5.3 * SUSE Linux Enterprise Micro for Rancher 5.4 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Manager Proxy 4.3 * SUSE Manager Retail Branch Server 4.3 * SUSE Manager Server 4.3 An update that solves three vulnerabilities can now be installed. ## Description: This update for kernel-firmware-nvidia-gspx-G06, nvidia-open-driver-G06-signed fixes the following issues: Security Update 550.90.07: * CVE-2024-0090: Fixed out of bounds write (bsc#1223356). * CVE-2024-0092: Fixed incorrect exception handling (bsc#1223356). * CVE-2024-0091: Fixed untrusted pointer dereference (bsc#1223356). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.4 zypper in -t patch SUSE-2024-2005=1 * SUSE Linux Enterprise Micro for Rancher 5.3 zypper in-t patch SUSE-SLE-Micro-5.3-2024-2005=1 * SUSE Linux Enterprise Micro 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2024-2005=1 * SUSE Linux Enterprise Micro for Rancher 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2024-2005=1 * SUSE Linux Enterprise Micro 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2024-2005=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2024-2005=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2024-2005=1 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 zypper in -t patch SUSE-SLE-Product-SLED-15-SP4-LTSS-2024-2005=1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2024-2005=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2024-2005=1 * SUSE Manager Proxy 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Proxy-4.3-2024-2005=1 * SUSE Manager Retail Branch Server 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Retail-Branch- Server-4.3-2024-2005=1 * SUSE Manager Server 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Server-4.3-2024-2005=1 ## Package List: * openSUSE Leap 15.4 (aarch64 nosrc x86_64) * kernel-firmware-nvidia-gspx-G06-550.90.07-150400.9.33.1 * openSUSE Leap 15.4 (x86_64) * nvidia-open-driver-G06-signed-azure-devel-550.90.07-150400.9.62.1 * nvidia-open-driver-G06-signed-kmp-azure-debuginfo-550.90.07_k5.14.21_150400.14.75-150400.9.62.1 * nvidia-open-driver-G06-signed-kmp-azure-550.90.07_k5.14.21_150400.14.75-150400.9.62.1 * openSUSE Leap 15.4 (aarch64 x86_64) * nvidia-open-driver-G06-signed-debugsource-550.90.07-150400.9.62.1 * nvidia-open-driver-G06-signed-kmp-default-550.90.07_k5.14.21_150400.24.119-150400.9.62.1 *nvidia-open-driver-G06-signed-kmp-default-debuginfo-550.90.07_k5.14.21_150400.24.119-150400.9.62.1 * nvidia-open-driver-G06-signed-default-devel-550.90.07-150400.9.62.1 * openSUSE Leap 15.4 (aarch64) * nvidia-open-driver-G06-signed-kmp-64kb-550.90.07_k5.14.21_150400.24.119-150400.9.62.1 * nvidia-open-driver-G06-signed-64kb-devel-550.90.07-150400.9.62.1 * nvidia-open-driver-G06-signed-kmp-64kb-debuginfo-550.90.07_k5.14.21_150400.24.119-150400.9.62.1 * SUSE Linux Enterprise Micro for Rancher 5.3 (aarch64 nosrc x86_64) * kernel-firmware-nvidia-gspx-G06-550.90.07-150400.9.33.1 * SUSE Linux Enterprise Micro for Rancher 5.3 (aarch64 x86_64) * nvidia-open-driver-G06-signed-debugsource-550.90.07-150400.9.62.1 * nvidia-open-driver-G06-signed-kmp-default-550.90.07_k5.14.21_150400.24.119-150400.9.62.1 * nvidia-open-driver-G06-signed-kmp-default-debuginfo-550.90.07_k5.14.21_150400.24.119-150400.9.62.1 * SUSE Linux Enterprise Micro 5.3 (aarch64 nosrc x86_64) * kernel-firmware-nvidia-gspx-G06-550.90.07-150400.9.33.1 * SUSE Linux Enterprise Micro 5.3 (aarch64 x86_64) * nvidia-open-driver-G06-signed-debugsource-550.90.07-150400.9.62.1 * nvidia-open-driver-G06-signed-kmp-default-550.90.07_k5.14.21_150400.24.119-150400.9.62.1 * nvidia-open-driver-G06-signed-kmp-default-debuginfo-550.90.07_k5.14.21_150400.24.119-150400.9.62.1 * SUSE Linux Enterprise Micro for Rancher 5.4 (aarch64 nosrc x86_64) * kernel-firmware-nvidia-gspx-G06-550.90.07-150400.9.33.1 * SUSE Linux Enterprise Micro for Rancher 5.4 (aarch64 x86_64) * nvidia-open-driver-G06-signed-debugsource-550.90.07-150400.9.62.1 * nvidia-open-driver-G06-signed-kmp-default-550.90.07_k5.14.21_150400.24.119-150400.9.62.1 * nvidia-open-driver-G06-signed-kmp-default-debuginfo-550.90.07_k5.14.21_150400.24.119-150400.9.62.1 * SUSE Linux Enterprise Micro 5.4 (aarch64 nosrc x86_64) * kernel-firmware-nvidia-gspx-G06-550.90.07-150400.9.33.1 * SUSE Linux Enterprise Micro 5.4 (aarch64 x86_64) *nvidia-open-driver-G06-signed-debugsource-550.90.07-150400.9.62.1 * nvidia-open-driver-G06-signed-kmp-default-550.90.07_k5.14.21_150400.24.119-150400.9.62.1 * nvidia-open-driver-G06-signed-kmp-default-debuginfo-550.90.07_k5.14.21_150400.24.119-150400.9.62.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64 nosrc x86_64) * kernel-firmware-nvidia-gspx-G06-550.90.07-150400.9.33.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64) * nvidia-open-driver-G06-signed-kmp-64kb-550.90.07_k5.14.21_150400.24.119-150400.9.62.1 * nvidia-open-driver-G06-signed-64kb-devel-550.90.07-150400.9.62.1 * nvidia-open-driver-G06-signed-kmp-64kb-debuginfo-550.90.07_k5.14.21_150400.24.119-150400.9.62.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64 x86_64) * nvidia-open-driver-G06-signed-debugsource-550.90.07-150400.9.62.1 * nvidia-open-driver-G06-signed-kmp-default-550.90.07_k5.14.21_150400.24.119-150400.9.62.1 * nvidia-open-driver-G06-signed-kmp-default-debuginfo-550.90.07_k5.14.21_150400.24.119-150400.9.62.1 * nvidia-open-driver-G06-signed-default-devel-550.90.07-150400.9.62.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64 nosrc x86_64) * kernel-firmware-nvidia-gspx-G06-550.90.07-150400.9.33.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64) * nvidia-open-driver-G06-signed-kmp-64kb-550.90.07_k5.14.21_150400.24.119-150400.9.62.1 * nvidia-open-driver-G06-signed-64kb-devel-550.90.07-150400.9.62.1 * nvidia-open-driver-G06-signed-kmp-64kb-debuginfo-550.90.07_k5.14.21_150400.24.119-150400.9.62.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64 x86_64) * nvidia-open-driver-G06-signed-debugsource-550.90.07-150400.9.62.1 * nvidia-open-driver-G06-signed-kmp-default-550.90.07_k5.14.21_150400.24.119-150400.9.62.1 * nvidia-open-driver-G06-signed-kmp-default-debuginfo-550.90.07_k5.14.21_150400.24.119-150400.9.62.1 * nvidia-open-driver-G06-signed-default-devel-550.90.07-150400.9.62.1 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 (nosrc x86_64) * kernel-firmware-nvidia-gspx-G06-550.90.07-150400.9.33.1 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 (x86_64) * nvidia-open-driver-G06-signed-debugsource-550.90.07-150400.9.62.1 * nvidia-open-driver-G06-signed-kmp-default-550.90.07_k5.14.21_150400.24.119-150400.9.62.1 * nvidia-open-driver-G06-signed-kmp-default-debuginfo-550.90.07_k5.14.21_150400.24.119-150400.9.62.1 * nvidia-open-driver-G06-signed-default-devel-550.90.07-150400.9.62.1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (aarch64 nosrc x86_64) * kernel-firmware-nvidia-gspx-G06-550.90.07-150400.9.33.1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (aarch64) * nvidia-open-driver-G06-signed-kmp-64kb-550.90.07_k5.14.21_150400.24.119-150400.9.62.1 * nvidia-open-driver-G06-signed-64kb-devel-550.90.07-150400.9.62.1 * nvidia-open-driver-G06-signed-kmp-64kb-debuginfo-550.90.07_k5.14.21_150400.24.119-150400.9.62.1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (aarch64 x86_64) * nvidia-open-driver-G06-signed-debugsource-550.90.07-150400.9.62.1 * nvidia-open-driver-G06-signed-kmp-default-550.90.07_k5.14.21_150400.24.119-150400.9.62.1 * nvidia-open-driver-G06-signed-kmp-default-debuginfo-550.90.07_k5.14.21_150400.24.119-150400.9.62.1 * nvidia-open-driver-G06-signed-default-devel-550.90.07-150400.9.62.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (nosrc x86_64) * kernel-firmware-nvidia-gspx-G06-550.90.07-150400.9.33.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (x86_64) * nvidia-open-driver-G06-signed-debugsource-550.90.07-150400.9.62.1 * nvidia-open-driver-G06-signed-kmp-default-550.90.07_k5.14.21_150400.24.119-150400.9.62.1 * nvidia-open-driver-G06-signed-kmp-default-debuginfo-550.90.07_k5.14.21_150400.24.119-150400.9.62.1 * nvidia-open-driver-G06-signed-default-devel-550.90.07-150400.9.62.1 *SUSE Manager Proxy 4.3 (nosrc x86_64) * kernel-firmware-nvidia-gspx-G06-550.90.07-150400.9.33.1 * SUSE Manager Proxy 4.3 (x86_64) * nvidia-open-driver-G06-signed-debugsource-550.90.07-150400.9.62.1 * nvidia-open-driver-G06-signed-kmp-default-550.90.07_k5.14.21_150400.24.119-150400.9.62.1 * nvidia-open-driver-G06-signed-kmp-default-debuginfo-550.90.07_k5.14.21_150400.24.119-150400.9.62.1 * nvidia-open-driver-G06-signed-default-devel-550.90.07-150400.9.62.1 * SUSE Manager Retail Branch Server 4.3 (nosrc x86_64) * kernel-firmware-nvidia-gspx-G06-550.90.07-150400.9.33.1 * SUSE Manager Retail Branch Server 4.3 (x86_64) * nvidia-open-driver-G06-signed-debugsource-550.90.07-150400.9.62.1 * nvidia-open-driver-G06-signed-kmp-default-550.90.07_k5.14.21_150400.24.119-150400.9.62.1 * nvidia-open-driver-G06-signed-kmp-default-debuginfo-550.90.07_k5.14.21_150400.24.119-150400.9.62.1 * nvidia-open-driver-G06-signed-default-devel-550.90.07-150400.9.62.1 * SUSE Manager Server 4.3 (nosrc x86_64) * kernel-firmware-nvidia-gspx-G06-550.90.07-150400.9.33.1 * SUSE Manager Server 4.3 (x86_64) * nvidia-open-driver-G06-signed-debugsource-550.90.07-150400.9.62.1 * nvidia-open-driver-G06-signed-kmp-default-550.90.07_k5.14.21_150400.24.119-150400.9.62.1 * nvidia-open-driver-G06-signed-kmp-default-debuginfo-550.90.07_k5.14.21_150400.24.119-150400.9.62.1 * nvidia-open-driver-G06-signed-default-devel-550.90.07-150400.9.62.1 ## References: * https://www.suse.com/security/cve/CVE-2024-0090.html * https://www.suse.com/security/cve/CVE-2024-0091.html * https://www.suse.com/security/cve/CVE-2024-0092.html * https://bugzilla.suse.com/show_bug.cgi?id=1223356 . Crucial enhancement released for Fedora kernel components and AMD graphical drivers resolving several high-severity vulnerabilities.. SUSE Security Update,nvidia drivers,kernel firmware,issue resolution. . Severity: Important. LinuxSecurity.com Team

Calendar%202 Jun 12, 2024 Important SuSE
100

SUSE: 2024:1990-1 Important: Fix Out Of Bounds And Pointer Issues

* bsc#1223356 Cross-References: * CVE-2024-0090 * CVE-2024-0091 . # Security update for kernel-firmware-nvidia-gspx-G06, nvidia-open- driver-G06-signed Announcement ID: SUSE-SU-2024:1990-1 Rating: important References: * bsc#1223356 Cross-References: * CVE-2024-0090 * CVE-2024-0091 * CVE-2024-0092 CVSS scores: * CVE-2024-0090 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2024-0091 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-0092 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H Affected Products: * Basesystem Module 15-SP5 * openSUSE Leap 15.5 * Public Cloud Module 15-SP5 * SUSE Linux Enterprise Desktop 15 SP5 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 An update that solves three vulnerabilities can now be installed. ## Description: This update for kernel-firmware-nvidia-gspx-G06, nvidia-open-driver-G06-signed fixes the following issues: Security Update 550.90.07: * CVE-2024-0090: Fixed out of bounds write (bsc#1223356). * CVE-2024-0092: Fixed incorrect exception handling (bsc#1223356). * CVE-2024-0091: Fixed untrusted pointer dereference (bsc#1223356). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.5 zypper in -t patch SUSE-2024-1990=1 openSUSE-SLE-15.5-2024-1990=1 * SUSE Linux Enterprise Micro 5.5 zypper in -t patch SUSE-SLE-Micro-5.5-2024-1990=1 * Basesystem Module 15-SP5 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP5-2024-1990=1 * Public Cloud Module 15-SP5 zypper in -t patch SUSE-SLE-Module-Public-Cloud-15-SP5-2024-1990=1 ## Package List: * openSUSE Leap 15.5 (aarch64 nosrcx86_64) * kernel-firmware-nvidia-gspx-G06-550.90.07-150500.11.29.1 * openSUSE Leap 15.5 (x86_64) * nvidia-open-driver-G06-signed-azure-devel-550.90.07-150500.3.47.1 * nvidia-open-driver-G06-signed-kmp-azure-550.90.07_k5.14.21_150500.33.54-150500.3.47.1 * nvidia-open-driver-G06-signed-kmp-azure-debuginfo-550.90.07_k5.14.21_150500.33.54-150500.3.47.1 * openSUSE Leap 15.5 (aarch64 x86_64) * nvidia-open-driver-G06-signed-kmp-default-debuginfo-550.90.07_k5.14.21_150500.55.65-150500.3.47.1 * nvidia-open-driver-G06-signed-debugsource-550.90.07-150500.3.47.1 * nvidia-open-driver-G06-signed-default-devel-550.90.07-150500.3.47.1 * nvidia-open-driver-G06-signed-kmp-default-550.90.07_k5.14.21_150500.55.65-150500.3.47.1 * openSUSE Leap 15.5 (aarch64) * nvidia-open-driver-G06-signed-64kb-devel-550.90.07-150500.3.47.1 * nvidia-open-driver-G06-signed-kmp-64kb-debuginfo-550.90.07_k5.14.21_150500.55.65-150500.3.47.1 * nvidia-open-driver-G06-signed-kmp-64kb-550.90.07_k5.14.21_150500.55.65-150500.3.47.1 * SUSE Linux Enterprise Micro 5.5 (aarch64 nosrc x86_64) * kernel-firmware-nvidia-gspx-G06-550.90.07-150500.11.29.1 * SUSE Linux Enterprise Micro 5.5 (aarch64 x86_64) * nvidia-open-driver-G06-signed-kmp-default-debuginfo-550.90.07_k5.14.21_150500.55.65-150500.3.47.1 * nvidia-open-driver-G06-signed-kmp-default-550.90.07_k5.14.21_150500.55.65-150500.3.47.1 * Basesystem Module 15-SP5 (aarch64 nosrc x86_64) * kernel-firmware-nvidia-gspx-G06-550.90.07-150500.11.29.1 * Basesystem Module 15-SP5 (aarch64) * nvidia-open-driver-G06-signed-64kb-devel-550.90.07-150500.3.47.1 * nvidia-open-driver-G06-signed-kmp-64kb-debuginfo-550.90.07_k5.14.21_150500.55.65-150500.3.47.1 * nvidia-open-driver-G06-signed-kmp-64kb-550.90.07_k5.14.21_150500.55.65-150500.3.47.1 * Basesystem Module 15-SP5 (aarch64 x86_64) * nvidia-open-driver-G06-signed-kmp-default-debuginfo-550.90.07_k5.14.21_150500.55.65-150500.3.47.1 *nvidia-open-driver-G06-signed-debugsource-550.90.07-150500.3.47.1 * nvidia-open-driver-G06-signed-default-devel-550.90.07-150500.3.47.1 * nvidia-open-driver-G06-signed-kmp-default-550.90.07_k5.14.21_150500.55.65-150500.3.47.1 * Public Cloud Module 15-SP5 (x86_64) * nvidia-open-driver-G06-signed-azure-devel-550.90.07-150500.3.47.1 * nvidia-open-driver-G06-signed-kmp-azure-550.90.07_k5.14.21_150500.33.54-150500.3.47.1 * nvidia-open-driver-G06-signed-kmp-azure-debuginfo-550.90.07_k5.14.21_150500.33.54-150500.3.47.1 ## References: * https://www.suse.com/security/cve/CVE-2024-0090.html * https://www.suse.com/security/cve/CVE-2024-0091.html * https://www.suse.com/security/cve/CVE-2024-0092.html * https://bugzilla.suse.com/show_bug.cgi?id=1223356 . Apply critical patches for the kernel-firmware-nvidia-gspx-G06 and nvidia-open-driver-G06-signed to address potential vulnerabilities.. SUSE Linux, Nvidia Driver Security, Kernel Update, SUSE Advisory, Security Patch. . Severity: Important. LinuxSecurity.com Team

Calendar%202 Jun 11, 2024 Important SuSE
202

openSUSE 15.4: 2024:0770-1 Important: NVIDIA Driver And Firmware Issues

This update for kernel-firmware-nvidia-gspx-G06, nvidia-open-driver-G06-signed fixes the following issues: Update to 550.54.14. # Security update for kernel-firmware-nvidia-gspx-G06, nvidia-open- driver-G06-signed Announcement ID: SUSE-SU-2024:0770-1 Rating: important References: * bsc#1220552 * jsc#PED-7117 Cross-References: * CVE-2022-42265 * CVE-2024-0074 * CVE-2024-0075 CVSS scores: * CVE-2022-42265 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L * CVE-2022-42265 ( NVD ): 5.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L * CVE-2024-0074 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2024-0075 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H Affected Products: * openSUSE Leap 15.4 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro 5.4 * SUSE Linux Enterprise Micro for Rancher 5.3 * SUSE Linux Enterprise Micro for Rancher 5.4 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Manager Proxy 4.3 * SUSE Manager Retail Branch Server 4.3 * SUSE Manager Server 4.3 An update that solves three vulnerabilities and contains one feature can now be installed. ## Description: This update for kernel-firmware-nvidia-gspx-G06, nvidia-open-driver-G06-signed fixes the following issues: Update to 550.54.14 * Added vGPU Host and vGPU Guest support. For vGPU Host, please refer to the README.vgpu packaged in the vGPU Host Package for more details. Security issues fixed: * CVE-2024-0074: A user could trigger a NULL ptr dereference. * CVE-2024-0075: A user could overwrite the end of a buffer, leading to crashes or code execution. * CVE-2022-42265: A unprivileged user could trigger an integer overflowwhich could lead to crashes or code execution. * create /run/udev/static_node-tags/uaccess/nvidia${devid} symlinks also during modprobing the nvidia module; this changes the issue of not having access to /dev/nvidia${devid}, when gfxcard has been replaced by a different gfx card after installing the driver * provide nvidia-open-driver-G06-kmp (jsc#PED-7117) * this makes it easy to replace the package from nVidia's CUDA repository with this presigned package ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Micro for Rancher 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2024-770=1 * SUSE Linux Enterprise Micro 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2024-770=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2024-770=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2024-770=1 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 zypper in -t patch SUSE-SLE-Product-SLED-15-SP4-LTSS-2024-770=1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2024-770=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2024-770=1 * SUSE Manager Proxy 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Proxy-4.3-2024-770=1 * SUSE Manager Retail Branch Server 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Retail-Branch- Server-4.3-2024-770=1 * SUSE Manager Server 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Server-4.3-2024-770=1 * openSUSE Leap 15.4 zypper in -t patch SUSE-2024-770=1 * SUSE Linux Enterprise Micro for Rancher 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2024-770=1 * SUSE Linux Enterprise Micro 5.3 zypper in -t patchSUSE-SLE-Micro-5.3-2024-770=1 ## Package List: * SUSE Linux Enterprise Micro for Rancher 5.4 (aarch64 nosrc x86_64) * kernel-firmware-nvidia-gspx-G06-550.54.14-150400.9.21.1 * SUSE Linux Enterprise Micro for Rancher 5.4 (aarch64 x86_64) * nvidia-open-driver-G06-signed-kmp-default-550.54.14_k5.14.21_150400.24.108-150400.9.50.1 * nvidia-open-driver-G06-signed-debugsource-550.54.14-150400.9.50.1 * nvidia-open-driver-G06-signed-kmp-default-debuginfo-550.54.14_k5.14.21_150400.24.108-150400.9.50.1 * SUSE Linux Enterprise Micro 5.4 (aarch64 nosrc x86_64) * kernel-firmware-nvidia-gspx-G06-550.54.14-150400.9.21.1 * SUSE Linux Enterprise Micro 5.4 (aarch64 x86_64) * nvidia-open-driver-G06-signed-kmp-default-550.54.14_k5.14.21_150400.24.108-150400.9.50.1 * nvidia-open-driver-G06-signed-debugsource-550.54.14-150400.9.50.1 * nvidia-open-driver-G06-signed-kmp-default-debuginfo-550.54.14_k5.14.21_150400.24.108-150400.9.50.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64 nosrc x86_64) * kernel-firmware-nvidia-gspx-G06-550.54.14-150400.9.21.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64) * nvidia-open-driver-G06-signed-kmp-64kb-debuginfo-550.54.14_k5.14.21_150400.24.108-150400.9.50.1 * nvidia-open-driver-G06-signed-64kb-devel-550.54.14-150400.9.50.1 * nvidia-open-driver-G06-signed-kmp-64kb-550.54.14_k5.14.21_150400.24.108-150400.9.50.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64 x86_64) * nvidia-open-driver-G06-signed-kmp-default-550.54.14_k5.14.21_150400.24.108-150400.9.50.1 * nvidia-open-driver-G06-signed-debugsource-550.54.14-150400.9.50.1 * nvidia-open-driver-G06-signed-default-devel-550.54.14-150400.9.50.1 * nvidia-open-driver-G06-signed-kmp-default-debuginfo-550.54.14_k5.14.21_150400.24.108-150400.9.50.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64 nosrc x86_64) * kernel-firmware-nvidia-gspx-G06-550.54.14-150400.9.21.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4(aarch64) * nvidia-open-driver-G06-signed-kmp-64kb-debuginfo-550.54.14_k5.14.21_150400.24.108-150400.9.50.1 * nvidia-open-driver-G06-signed-64kb-devel-550.54.14-150400.9.50.1 * nvidia-open-driver-G06-signed-kmp-64kb-550.54.14_k5.14.21_150400.24.108-150400.9.50.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64 x86_64) * nvidia-open-driver-G06-signed-kmp-default-550.54.14_k5.14.21_150400.24.108-150400.9.50.1 * nvidia-open-driver-G06-signed-debugsource-550.54.14-150400.9.50.1 * nvidia-open-driver-G06-signed-default-devel-550.54.14-150400.9.50.1 * nvidia-open-driver-G06-signed-kmp-default-debuginfo-550.54.14_k5.14.21_150400.24.108-150400.9.50.1 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 (nosrc x86_64) * kernel-firmware-nvidia-gspx-G06-550.54.14-150400.9.21.1 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 (x86_64) * nvidia-open-driver-G06-signed-kmp-default-550.54.14_k5.14.21_150400.24.108-150400.9.50.1 * nvidia-open-driver-G06-signed-debugsource-550.54.14-150400.9.50.1 * nvidia-open-driver-G06-signed-default-devel-550.54.14-150400.9.50.1 * nvidia-open-driver-G06-signed-kmp-default-debuginfo-550.54.14_k5.14.21_150400.24.108-150400.9.50.1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (aarch64 nosrc x86_64) * kernel-firmware-nvidia-gspx-G06-550.54.14-150400.9.21.1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (aarch64) * nvidia-open-driver-G06-signed-kmp-64kb-debuginfo-550.54.14_k5.14.21_150400.24.108-150400.9.50.1 * nvidia-open-driver-G06-signed-64kb-devel-550.54.14-150400.9.50.1 * nvidia-open-driver-G06-signed-kmp-64kb-550.54.14_k5.14.21_150400.24.108-150400.9.50.1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (aarch64 x86_64) * nvidia-open-driver-G06-signed-kmp-default-550.54.14_k5.14.21_150400.24.108-150400.9.50.1 * nvidia-open-driver-G06-signed-debugsource-550.54.14-150400.9.50.1 * nvidia-open-driver-G06-signed-default-devel-550.54.14-150400.9.50.1 *nvidia-open-driver-G06-signed-kmp-default-debuginfo-550.54.14_k5.14.21_150400.24.108-150400.9.50.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (nosrc x86_64) * kernel-firmware-nvidia-gspx-G06-550.54.14-150400.9.21.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (x86_64) * nvidia-open-driver-G06-signed-kmp-default-550.54.14_k5.14.21_150400.24.108-150400.9.50.1 * nvidia-open-driver-G06-signed-debugsource-550.54.14-150400.9.50.1 * nvidia-open-driver-G06-signed-default-devel-550.54.14-150400.9.50.1 * nvidia-open-driver-G06-signed-kmp-default-debuginfo-550.54.14_k5.14.21_150400.24.108-150400.9.50.1 * SUSE Manager Proxy 4.3 (nosrc x86_64) * kernel-firmware-nvidia-gspx-G06-550.54.14-150400.9.21.1 * SUSE Manager Proxy 4.3 (x86_64) * nvidia-open-driver-G06-signed-kmp-default-550.54.14_k5.14.21_150400.24.108-150400.9.50.1 * nvidia-open-driver-G06-signed-debugsource-550.54.14-150400.9.50.1 * nvidia-open-driver-G06-signed-default-devel-550.54.14-150400.9.50.1 * nvidia-open-driver-G06-signed-kmp-default-debuginfo-550.54.14_k5.14.21_150400.24.108-150400.9.50.1 * SUSE Manager Retail Branch Server 4.3 (nosrc x86_64) * kernel-firmware-nvidia-gspx-G06-550.54.14-150400.9.21.1 * SUSE Manager Retail Branch Server 4.3 (x86_64) * nvidia-open-driver-G06-signed-kmp-default-550.54.14_k5.14.21_150400.24.108-150400.9.50.1 * nvidia-open-driver-G06-signed-debugsource-550.54.14-150400.9.50.1 * nvidia-open-driver-G06-signed-default-devel-550.54.14-150400.9.50.1 * nvidia-open-driver-G06-signed-kmp-default-debuginfo-550.54.14_k5.14.21_150400.24.108-150400.9.50.1 * SUSE Manager Server 4.3 (nosrc x86_64) * kernel-firmware-nvidia-gspx-G06-550.54.14-150400.9.21.1 * SUSE Manager Server 4.3 (x86_64) * nvidia-open-driver-G06-signed-kmp-default-550.54.14_k5.14.21_150400.24.108-150400.9.50.1 * nvidia-open-driver-G06-signed-debugsource-550.54.14-150400.9.50.1 * nvidia-open-driver-G06-signed-default-devel-550.54.14-150400.9.50.1 *nvidia-open-driver-G06-signed-kmp-default-debuginfo-550.54.14_k5.14.21_150400.24.108-150400.9.50.1 * openSUSE Leap 15.4 (aarch64 nosrc x86_64) * kernel-firmware-nvidia-gspx-G06-550.54.14-150400.9.21.1 * openSUSE Leap 15.4 (x86_64) * nvidia-open-driver-G06-signed-kmp-azure-debuginfo-550.54.14_k5.14.21_150400.14.75-150400.9.50.1 * nvidia-open-driver-G06-signed-kmp-azure-550.54.14_k5.14.21_150400.14.75-150400.9.50.1 * nvidia-open-driver-G06-signed-azure-devel-550.54.14-150400.9.50.1 * openSUSE Leap 15.4 (aarch64 x86_64) * nvidia-open-driver-G06-signed-kmp-default-550.54.14_k5.14.21_150400.24.108-150400.9.50.1 * nvidia-open-driver-G06-signed-debugsource-550.54.14-150400.9.50.1 * nvidia-open-driver-G06-signed-default-devel-550.54.14-150400.9.50.1 * nvidia-open-driver-G06-signed-kmp-default-debuginfo-550.54.14_k5.14.21_150400.24.108-150400.9.50.1 * openSUSE Leap 15.4 (aarch64) * nvidia-open-driver-G06-signed-kmp-64kb-debuginfo-550.54.14_k5.14.21_150400.24.108-150400.9.50.1 * nvidia-open-driver-G06-signed-64kb-devel-550.54.14-150400.9.50.1 * nvidia-open-driver-G06-signed-kmp-64kb-550.54.14_k5.14.21_150400.24.108-150400.9.50.1 * SUSE Linux Enterprise Micro for Rancher 5.3 (aarch64 nosrc x86_64) * kernel-firmware-nvidia-gspx-G06-550.54.14-150400.9.21.1 * SUSE Linux Enterprise Micro for Rancher 5.3 (aarch64 x86_64) * nvidia-open-driver-G06-signed-kmp-default-550.54.14_k5.14.21_150400.24.108-150400.9.50.1 * nvidia-open-driver-G06-signed-debugsource-550.54.14-150400.9.50.1 * nvidia-open-driver-G06-signed-kmp-default-debuginfo-550.54.14_k5.14.21_150400.24.108-150400.9.50.1 * SUSE Linux Enterprise Micro 5.3 (aarch64 nosrc x86_64) * kernel-firmware-nvidia-gspx-G06-550.54.14-150400.9.21.1 * SUSE Linux Enterprise Micro 5.3 (aarch64 x86_64) * nvidia-open-driver-G06-signed-kmp-default-550.54.14_k5.14.21_150400.24.108-150400.9.50.1 * nvidia-open-driver-G06-signed-debugsource-550.54.14-150400.9.50.1 * nvidia-open-driver-G06-signed-kmp-default-debuginfo-550.54.14_k5.14.21_150400.24.108-150400.9.50.1 ##References: * https://www.suse.com/security/cve/CVE-2022-42265.html * https://www.suse.com/security/cve/CVE-2024-0074.html * https://www.suse.com/security/cve/CVE-2024-0075.html * https://bugzilla.suse.com/show_bug.cgi?id=1220552 * . Enhancements for the nvidia-gspx-G06 kernel firmware and nvidia drivers tackle critical vulnerabilities. Ensure your system remains secure and current.. openSUSE Security,NVIDIA Driver Fixes,KERNEL Firmware Updates,Linux System Patches. . Severity: Important. LinuxSecurity.com Team

Calendar%202 Mar 05, 2024 Important OpenSUSE
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

Is continuous patching actually viable?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/156-is-continuous-patching-actually-viable?task=poll.vote&format=json
156
radio
0
[{"id":503,"title":"Delayed updates invite catastrophic breaches.","votes":1,"type":"x","order":1,"pct":50,"resources":[]},{"id":504,"title":"Automated fixes break production environments.","votes":1,"type":"x","order":2,"pct":50,"resources":[]},{"id":505,"title":"Manual approvals cannot keep pace.","votes":0,"type":"x","order":3,"pct":0,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200