Explore top 10 tips to secure your open-source projects now. Read More
×* bsc#1236191 * bsc#1236658 * bsc#1236746 * bsc#1237308 * bsc#1237585 . # Security update for nvidia-open-driver-G06-signed Announcement ID: SUSE-SU-2025:03062-1 Release Date: 2025-09-03T16:06:55Z Rating: important References: * bsc#1236191 * bsc#1236658 * bsc#1236746 * bsc#1237308 * bsc#1237585 * bsc#1239139 * bsc#1239653 * bsc#1241231 * bsc#1242054 * bsc#1243192 * bsc#1244614 * bsc#1246010 * bsc#1246327 * bsc#1247528 * bsc#1247529 * bsc#1247530 * bsc#1247531 * bsc#1247532 Cross-References: * CVE-2025-23277 * CVE-2025-23278 * CVE-2025-23279 * CVE-2025-23283 * CVE-2025-23286 CVSS scores: * CVE-2025-23277 ( SUSE ): 7.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H * CVE-2025-23277 ( NVD ): 7.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H * CVE-2025-23278 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2025-23278 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2025-23279 ( SUSE ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2025-23279 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2025-23283 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2025-23283 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2025-23286 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N * CVE-2025-23286 ( NVD ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N Affected Products: * openSUSE Leap 15.5 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP5 LTSS * SUSE Linux Enterprise Server for SAP Applications 15 SP5 An update that solves five vulnerabilities and has 13 security fixes can now be installed. ## Description: This update for nvidia-open-driver-G06-signed fixes thefollowing issues: Updated CUDA variant to 580.65.06: * CVE-2025-23277: Fixed access memory outside bounds permitted under normal use cases in NVIDIA Display Driver (bsc#1247528) * CVE-2025-23278: Fixed improper index validation by issuing a call with crafted parameters in NVIDIA Display Driver (bsc#1247529) * CVE-2025-23286: Fixed invalid memory read in NVIDIA GPU Display Driver (bsc#1247530) * CVE-2025-23283: Fixed stack buffer overflow triggerable by a malicious guest in Virtual GPU Manager in NVIDIA vGPU software (bsc#1247531) * CVE-2025-23279: Fixed race condition that lead to privileges escalations in NVIDIA .run Installer (bsc#1247532) Updated non-CUDA variant to 570.172.08 (bsc#1246327) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.5 zypper in -t patch SUSE-2025-3062=1 * SUSE Linux Enterprise Micro 5.5 zypper in -t patch SUSE-SLE-Micro-5.5-2025-3062=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-ESPOS-2025-3062=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-LTSS-2025-3062=1 * SUSE Linux Enterprise Server 15 SP5 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP5-LTSS-2025-3062=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP5-2025-3062=1 ## Package List: * openSUSE Leap 15.5 (aarch64 x86_64) * nvidia-open-driver-G06-signed-kmp-default-debuginfo-570.172.08_k5.14.21_150500.55.116-150500.3.73.7 * nvidia-open-driver-G06-signed-cuda-kmp-default-580.65.06_k5.14.21_150500.55.116-150500.3.73.7 * nvidia-open-driver-G06-signed-default-devel-570.172.08-150500.3.73.7 * nvidia-open-driver-G06-signed-cuda-default-devel-580.65.06-150500.3.73.7 * nvidia-open-driver-G06-signed-debugsource-570.172.08-150500.3.73.7 * nvidia-open-driver-G06-signed-cuda-kmp-default-debuginfo-580.65.06_k5.14.21_150500.55.116-150500.3.73.7 * nvidia-open-driver-G06-signed-cuda-debugsource-580.65.06-150500.3.73.7 * nv-prefer-signed-open-driver-580.65.06-150500.3.73.7 * nvidia-open-driver-G06-signed-kmp-default-570.172.08_k5.14.21_150500.55.116-150500.3.73.7 * openSUSE Leap 15.5 (aarch64) * nvidia-open-driver-G06-signed-cuda-kmp-64kb-580.65.06_k5.14.21_150500.55.116-150500.3.73.7 * nvidia-open-driver-G06-signed-cuda-kmp-64kb-debuginfo-580.65.06_k5.14.21_150500.55.116-150500.3.73.7 * nvidia-open-driver-G06-signed-cuda-64kb-devel-580.65.06-150500.3.73.7 * nvidia-open-driver-G06-signed-kmp-64kb-debuginfo-570.172.08_k5.14.21_150500.55.116-150500.3.73.7 * nvidia-open-driver-G06-signed-64kb-devel-570.172.08-150500.3.73.7 * nvidia-open-driver-G06-signed-kmp-64kb-570.172.08_k5.14.21_150500.55.116-150500.3.73.7 * SUSE Linux Enterprise Micro 5.5 (aarch64 x86_64) * nvidia-open-driver-G06-signed-kmp-default-debuginfo-570.172.08_k5.14.21_150500.55.116-150500.3.73.7 * nvidia-open-driver-G06-signed-cuda-kmp-default-580.65.06_k5.14.21_150500.55.116-150500.3.73.7 * nvidia-open-driver-G06-signed-debugsource-570.172.08-150500.3.73.7 * nvidia-open-driver-G06-signed-cuda-kmp-default-debuginfo-580.65.06_k5.14.21_150500.55.116-150500.3.73.7 * nvidia-open-driver-G06-signed-cuda-debugsource-580.65.06-150500.3.73.7 * nv-prefer-signed-open-driver-580.65.06-150500.3.73.7 * nvidia-open-driver-G06-signed-kmp-default-570.172.08_k5.14.21_150500.55.116-150500.3.73.7 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (aarch64 x86_64) * nvidia-open-driver-G06-signed-kmp-default-debuginfo-570.172.08_k5.14.21_150500.55.116-150500.3.73.7 * nvidia-open-driver-G06-signed-cuda-kmp-default-580.65.06_k5.14.21_150500.55.116-150500.3.73.7 * nvidia-open-driver-G06-signed-cuda-default-devel-580.65.06-150500.3.73.7 *nvidia-open-driver-G06-signed-default-devel-570.172.08-150500.3.73.7 * nvidia-open-driver-G06-signed-debugsource-570.172.08-150500.3.73.7 * nvidia-open-driver-G06-signed-cuda-kmp-default-debuginfo-580.65.06_k5.14.21_150500.55.116-150500.3.73.7 * nvidia-open-driver-G06-signed-cuda-debugsource-580.65.06-150500.3.73.7 * nv-prefer-signed-open-driver-580.65.06-150500.3.73.7 * nvidia-open-driver-G06-signed-kmp-default-570.172.08_k5.14.21_150500.55.116-150500.3.73.7 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (aarch64) * nvidia-open-driver-G06-signed-cuda-kmp-64kb-580.65.06_k5.14.21_150500.55.116-150500.3.73.7 * nvidia-open-driver-G06-signed-cuda-kmp-64kb-debuginfo-580.65.06_k5.14.21_150500.55.116-150500.3.73.7 * nvidia-open-driver-G06-signed-cuda-64kb-devel-580.65.06-150500.3.73.7 * nvidia-open-driver-G06-signed-kmp-64kb-debuginfo-570.172.08_k5.14.21_150500.55.116-150500.3.73.7 * nvidia-open-driver-G06-signed-64kb-devel-570.172.08-150500.3.73.7 * nvidia-open-driver-G06-signed-kmp-64kb-570.172.08_k5.14.21_150500.55.116-150500.3.73.7 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (aarch64 x86_64) * nvidia-open-driver-G06-signed-kmp-default-debuginfo-570.172.08_k5.14.21_150500.55.116-150500.3.73.7 * nvidia-open-driver-G06-signed-cuda-kmp-default-580.65.06_k5.14.21_150500.55.116-150500.3.73.7 * nvidia-open-driver-G06-signed-cuda-default-devel-580.65.06-150500.3.73.7 * nvidia-open-driver-G06-signed-default-devel-570.172.08-150500.3.73.7 * nvidia-open-driver-G06-signed-debugsource-570.172.08-150500.3.73.7 * nvidia-open-driver-G06-signed-cuda-kmp-default-debuginfo-580.65.06_k5.14.21_150500.55.116-150500.3.73.7 * nvidia-open-driver-G06-signed-cuda-debugsource-580.65.06-150500.3.73.7 * nv-prefer-signed-open-driver-580.65.06-150500.3.73.7 * nvidia-open-driver-G06-signed-kmp-default-570.172.08_k5.14.21_150500.55.116-150500.3.73.7 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (aarch64) * nvidia-open-driver-G06-signed-cuda-kmp-64kb-580.65.06_k5.14.21_150500.55.116-150500.3.73.7 * nvidia-open-driver-G06-signed-cuda-kmp-64kb-debuginfo-580.65.06_k5.14.21_150500.55.116-150500.3.73.7 * nvidia-open-driver-G06-signed-cuda-64kb-devel-580.65.06-150500.3.73.7 * nvidia-open-driver-G06-signed-kmp-64kb-debuginfo-570.172.08_k5.14.21_150500.55.116-150500.3.73.7 * nvidia-open-driver-G06-signed-64kb-devel-570.172.08-150500.3.73.7 * nvidia-open-driver-G06-signed-kmp-64kb-570.172.08_k5.14.21_150500.55.116-150500.3.73.7 * SUSE Linux Enterprise Server 15 SP5 LTSS (aarch64 x86_64) * nvidia-open-driver-G06-signed-kmp-default-debuginfo-570.172.08_k5.14.21_150500.55.116-150500.3.73.7 * nvidia-open-driver-G06-signed-cuda-kmp-default-580.65.06_k5.14.21_150500.55.116-150500.3.73.7 * nvidia-open-driver-G06-signed-cuda-default-devel-580.65.06-150500.3.73.7 * nvidia-open-driver-G06-signed-default-devel-570.172.08-150500.3.73.7 * nvidia-open-driver-G06-signed-debugsource-570.172.08-150500.3.73.7 * nvidia-open-driver-G06-signed-cuda-kmp-default-debuginfo-580.65.06_k5.14.21_150500.55.116-150500.3.73.7 * nvidia-open-driver-G06-signed-cuda-debugsource-580.65.06-150500.3.73.7 * nv-prefer-signed-open-driver-580.65.06-150500.3.73.7 * nvidia-open-driver-G06-signed-kmp-default-570.172.08_k5.14.21_150500.55.116-150500.3.73.7 * SUSE Linux Enterprise Server 15 SP5 LTSS (aarch64) * nvidia-open-driver-G06-signed-cuda-kmp-64kb-580.65.06_k5.14.21_150500.55.116-150500.3.73.7 * nvidia-open-driver-G06-signed-cuda-kmp-64kb-debuginfo-580.65.06_k5.14.21_150500.55.116-150500.3.73.7 * nvidia-open-driver-G06-signed-cuda-64kb-devel-580.65.06-150500.3.73.7 * nvidia-open-driver-G06-signed-kmp-64kb-debuginfo-570.172.08_k5.14.21_150500.55.116-150500.3.73.7 * nvidia-open-driver-G06-signed-64kb-devel-570.172.08-150500.3.73.7 * nvidia-open-driver-G06-signed-kmp-64kb-570.172.08_k5.14.21_150500.55.116-150500.3.73.7 * SUSE Linux Enterprise Server for SAP Applications 15 SP5(x86_64) * nvidia-open-driver-G06-signed-kmp-default-debuginfo-570.172.08_k5.14.21_150500.55.116-150500.3.73.7 * nvidia-open-driver-G06-signed-cuda-kmp-default-580.65.06_k5.14.21_150500.55.116-150500.3.73.7 * nvidia-open-driver-G06-signed-cuda-default-devel-580.65.06-150500.3.73.7 * nvidia-open-driver-G06-signed-default-devel-570.172.08-150500.3.73.7 * nvidia-open-driver-G06-signed-debugsource-570.172.08-150500.3.73.7 * nvidia-open-driver-G06-signed-cuda-kmp-default-debuginfo-580.65.06_k5.14.21_150500.55.116-150500.3.73.7 * nvidia-open-driver-G06-signed-cuda-debugsource-580.65.06-150500.3.73.7 * nv-prefer-signed-open-driver-580.65.06-150500.3.73.7 * nvidia-open-driver-G06-signed-kmp-default-570.172.08_k5.14.21_150500.55.116-150500.3.73.7 ## References: * https://www.suse.com/security/cve/CVE-2025-23277.html * https://www.suse.com/security/cve/CVE-2025-23278.html * https://www.suse.com/security/cve/CVE-2025-23279.html * https://www.suse.com/security/cve/CVE-2025-23283.html * https://www.suse.com/security/cve/CVE-2025-23286.html * https://bugzilla.suse.com/show_bug.cgi?id=1236191 * https://bugzilla.suse.com/show_bug.cgi?id=1236658 * https://bugzilla.suse.com/show_bug.cgi?id=1236746 * https://bugzilla.suse.com/show_bug.cgi?id=1237308 * https://bugzilla.suse.com/show_bug.cgi?id=1237585 * https://bugzilla.suse.com/show_bug.cgi?id=1239139 * https://bugzilla.suse.com/show_bug.cgi?id=1239653 * https://bugzilla.suse.com/show_bug.cgi?id=1241231 * https://bugzilla.suse.com/show_bug.cgi?id=1242054 * https://bugzilla.suse.com/show_bug.cgi?id=1243192 * https://bugzilla.suse.com/show_bug.cgi?id=1244614 * https://bugzilla.suse.com/show_bug.cgi?id=1246010 * https://bugzilla.suse.com/show_bug.cgi?id=1246327 * https://bugzilla.suse.com/show_bug.cgi?id=1247528 * https://bugzilla.suse.com/show_bug.cgi?id=1247529 * https://bugzilla.suse.com/show_bug.cgi?id=1247530 * https://bugzilla.suse.com/show_bug.cgi?id=1247531 *https://bugzilla.suse.com/show_bug.cgi?id=1247532 . The latest essential update from SUSE for the nvidia-open-driver-G06-signed addresses a range of critical vulnerabilities that pose risks to system integrity.. NVIDIA Driver Update,SUSE Security Fix,nvidia-open-driver,Critical NVIDIA Issues. . Severity: Important. LinuxSecurity.com Team
* bsc#1222972 * bsc#1223356 * bsc#1223454 * bsc#1227417 * bsc#1227419 . # Security update for nvidia-open-driver-G06-signed Announcement ID: SUSE-SU-2025:20108-1 Release Date: 2025-02-03T09:19:19Z Rating: important References: * bsc#1222972 * bsc#1223356 * bsc#1223454 * bsc#1227417 * bsc#1227419 * bsc#1227575 * bsc#1229716 * bsc#1230368 * bsc#1230779 * bsc#1232057 * bsc#1233332 * bsc#1233673 Cross-References: * CVE-2024-0090 * CVE-2024-0091 * CVE-2024-0092 CVSS scores: * CVE-2024-0090 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2024-0090 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-0091 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-0091 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-0092 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-0092 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H Affected Products: * SUSE Linux Micro 6.0 An update that solves three vulnerabilities and has nine fixes can now be installed. ## Description: This update for nvidia-open-driver-G06-signed fixes the following issues: * Make sure the correct FW package is installed on non-CUDA. * only obsolete 555 CUDA driver/firmware packages * For CUDA: update version to 565.57.01 * Add 'dummy' firmware package on SLE to work around update issues. On SLE, the firmware is installed directly from an NVIDIA-hosted repo. * Improve handling of conflicts between different flavors (gfx vs. CUDA) (bsc#1233332). * Update to 550.135 (bsc#1233673) * Update to 550.127.05 (bsc#1232057) * Fixed a bug which could cause applications using GBM to crash when running with nvidia-drm.modeset=0. * cuda-flavor provide also nvidia-open-driver-G06-kmp-$flavor = %version to workaround broken cuda-drivers * For CUDA update version to 560.35.03 * nv-prefer-signed-open-driver: * added specicic versions ofcuda-drivers/cuda-drivers-xxx as preconditions for requiring specific version of nvidia-compute-G06 * nv-prefer-signed-open-driver: * no longer require a specific version of nvidia-open-driver-G06-signed-cuda- kmp, so it can select the correct open driver KMP matching the cuda-runtime version * cuda-flavor: * added nvidia-compute-G06 = %version to preconditions for requiring kernel- firmware-nvidia-gspx-G06, since nvidia-compute-utils-G06 does not have a version-specific requires on nvidia-compute-G06 * cuda-flavor: * require kernel-firmware-nvidia-gspx-G06 instead of kernel-firmware-nvidia- gspx-G06-cuda (which provides also kernel-firmware-nvidia-gspx-G06) * trigger removal of driver modules also on kernel-firmware-nvidia-gspx-G06 * no longer hard-require kernel firmware package, but install it automatically once nvidia-compute-utils-G06 gets installed * trigger removal of driver modules with non-existing or wrong firmware when (new) firmware gets installed * Update to 550.120 (bsc#1230779) * Fixed a bug that could cause kernel crashes upon attempting KMS operations through DRM when nvidia_drm was loaded with modeset=0. * CUDA build: removed entries from pci_ids-555.42.06 since this is doing more harm than benefit (bsc#1230368) * For CUDA (preamble file): * added: Provides: nvidia-open-driver-G06-signed-cuda-kmp-$flavor = %version which is needed for 'zypper install = ' * added: Provides/Conflicts: nvidia-open-driver-G06-signed-kmp-$flavor = %version useful for containers * reverted CUDA update version to 560.x.y due to changes in CUDA repository with CUDA 12.6/560.x.y drivers * For CUDA update version to 560.35.03 * Update to 550.107.02 (bsc#1229716) * For CUDA update version to 560.28.03 * Update to 550.100 (bsc#1227575) * Fixed a bug that caused OpenGL triple buffering to behave like double buffering. * To avoid issues with missing dependencies when no CUDA repo is present make thedependecy to nvidia-compute-G06 conditional. * CUDA is not available for Tumbleweed, exclude the build of the cuda flavor. * preamble: let the -cuda flavor KMP require the -cuda flavor firmware * Add a second flavor for building the kernel module versions used by CUDA. The kmp targetting CUDA contains '-cuda' in its name to track its versions separately from the graphics kmp. (bsc#1227417) * Provide the meta package nv-prefer-signed-open-driver to make sure the latest available SUSE-build open driver is installed - independent of the latest available open driver version in he CUDA repository. Rationale: The package cuda-runtime provides the link between CUDA and the kernel driver version through a Requires: cuda-drivers > = %version This implies that a CUDA version will run withany kernel driver version equal or higher than a base version. nvidia-compute-G06 provides the glue layer between CUDA and a specific version of he kernel driver both by providing a set of base libraries and by requiring a specific kernel version. 'cuda-drivers' (provided by nvidia-compute-utils-G06) requires an unversioned nvidia- compute-G06. With this, the resolver will install the latest available and applicable nvidia-compute-G06. nv-prefer-signed-open-driver then represents the latest available open driver version and restricts the nvidia- compute-G06 version to it. (bsc#1227419) * Security Update 550.90.07 (bsc#1223356) [CVE-2024-0090, CVE-2024-0091, CVE-2024-0092] * Update to 550.78 (bsc#1223454) * Update to 550.76 (bsc#1222972) * Update to 550.67 ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.0 zypper in -t patch SUSE-SLE-Micro-6.0-174=1 ## Package List: * SUSE Linux Micro 6.0 (aarch64 x86_64) *nvidia-open-driver-G06-signed-kmp-default-550.142_k6.4.0_20-1.1 * nvidia-open-driver-G06-signed-kmp-default-debuginfo-550.142_k6.4.0_20-1.1 * nvidia-open-driver-G06-signed-debugsource-550.142-1.1 ## References: * https://www.suse.com/security/cve/CVE-2024-0090.html * https://www.suse.com/security/cve/CVE-2024-0091.html * https://www.suse.com/security/cve/CVE-2024-0092.html * https://bugzilla.suse.com/show_bug.cgi?id=1222972 * https://bugzilla.suse.com/show_bug.cgi?id=1223356 * https://bugzilla.suse.com/show_bug.cgi?id=1223454 * https://bugzilla.suse.com/show_bug.cgi?id=1227417 * https://bugzilla.suse.com/show_bug.cgi?id=1227419 * https://bugzilla.suse.com/show_bug.cgi?id=1227575 * https://bugzilla.suse.com/show_bug.cgi?id=1229716 * https://bugzilla.suse.com/show_bug.cgi?id=1230368 * https://bugzilla.suse.com/show_bug.cgi?id=1230779 * https://bugzilla.suse.com/show_bug.cgi?id=1232057 * https://bugzilla.suse.com/show_bug.cgi?id=1233332 * https://bugzilla.suse.com/show_bug.cgi?id=1233673 . SUSE Linux Micro 6.0 security alert tackling severe problems with the nvidia driver, featuring essential patches and upgrades.. SUSE Linux Micro,nvidia driver update,security vulnerabilities,security patch. . Severity: Important. LinuxSecurity.com Team
* bsc#1222972 * bsc#1223356 * bsc#1223454 * bsc#1227417 * bsc#1227419 . # Security update for nvidia-open-driver-G06-signed Announcement ID: SUSE-SU-2025:20108-1 Release Date: 2025-02-03T09:19:19Z Rating: important References: * bsc#1222972 * bsc#1223356 * bsc#1223454 * bsc#1227417 * bsc#1227419 * bsc#1227575 * bsc#1229716 * bsc#1230368 * bsc#1230779 * bsc#1232057 * bsc#1233332 * bsc#1233673 Cross-References: * CVE-2024-0090 * CVE-2024-0091 * CVE-2024-0092 CVSS scores: * CVE-2024-0090 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2024-0090 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-0091 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-0091 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-0092 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-0092 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H Affected Products: * SUSE Linux Micro 6.0 An update that solves three vulnerabilities and has nine fixes can now be installed. ## Description: This update for nvidia-open-driver-G06-signed fixes the following issues: * Make sure the correct FW package is installed on non-CUDA. * only obsolete 555 CUDA driver/firmware packages * For CUDA: update version to 565.57.01 * Add 'dummy' firmware package on SLE to work around update issues. On SLE, the firmware is installed directly from an NVIDIA-hosted repo. * Improve handling of conflicts between different flavors (gfx vs. CUDA) (bsc#1233332). * Update to 550.135 (bsc#1233673) * Update to 550.127.05 (bsc#1232057) * Fixed a bug which could cause applications using GBM to crash when running with nvidia-drm.modeset=0. * cuda-flavor provide also nvidia-open-driver-G06-kmp-$flavor = %version to workaround broken cuda-drivers * For CUDA update version to 560.35.03 * nv-prefer-signed-open-driver: * added specicic versions ofcuda-drivers/cuda-drivers-xxx as preconditions for requiring specific version of nvidia-compute-G06 * nv-prefer-signed-open-driver: * no longer require a specific version of nvidia-open-driver-G06-signed-cuda- kmp, so it can select the correct open driver KMP matching the cuda-runtime version * cuda-flavor: * added nvidia-compute-G06 = %version to preconditions for requiring kernel- firmware-nvidia-gspx-G06, since nvidia-compute-utils-G06 does not have a version-specific requires on nvidia-compute-G06 * cuda-flavor: * require kernel-firmware-nvidia-gspx-G06 instead of kernel-firmware-nvidia- gspx-G06-cuda (which provides also kernel-firmware-nvidia-gspx-G06) * trigger removal of driver modules also on kernel-firmware-nvidia-gspx-G06 * no longer hard-require kernel firmware package, but install it automatically once nvidia-compute-utils-G06 gets installed * trigger removal of driver modules with non-existing or wrong firmware when (new) firmware gets installed * Update to 550.120 (bsc#1230779) * Fixed a bug that could cause kernel crashes upon attempting KMS operations through DRM when nvidia_drm was loaded with modeset=0. * CUDA build: removed entries from pci_ids-555.42.06 since this is doing more harm than benefit (bsc#1230368) * For CUDA (preamble file): * added: Provides: nvidia-open-driver-G06-signed-cuda-kmp-$flavor = %version which is needed for 'zypper install = ' * added: Provides/Conflicts: nvidia-open-driver-G06-signed-kmp-$flavor = %version useful for containers * reverted CUDA update version to 560.x.y due to changes in CUDA repository with CUDA 12.6/560.x.y drivers * For CUDA update version to 560.35.03 * Update to 550.107.02 (bsc#1229716) * For CUDA update version to 560.28.03 * Update to 550.100 (bsc#1227575) * Fixed a bug that caused OpenGL triple buffering to behave like double buffering. * To avoid issues with missing dependencies when no CUDA repo is present make thedependecy to nvidia-compute-G06 conditional. * CUDA is not available for Tumbleweed, exclude the build of the cuda flavor. * preamble: let the -cuda flavor KMP require the -cuda flavor firmware * Add a second flavor for building the kernel module versions used by CUDA. The kmp targetting CUDA contains '-cuda' in its name to track its versions separately from the graphics kmp. (bsc#1227417) * Provide the meta package nv-prefer-signed-open-driver to make sure the latest available SUSE-build open driver is installed - independent of the latest available open driver version in he CUDA repository. Rationale: The package cuda-runtime provides the link between CUDA and the kernel driver version through a Requires: cuda-drivers > = %version This implies that a CUDA version will run withany kernel driver version equal or higher than a base version. nvidia-compute-G06 provides the glue layer between CUDA and a specific version of he kernel driver both by providing a set of base libraries and by requiring a specific kernel version. 'cuda-drivers' (provided by nvidia-compute-utils-G06) requires an unversioned nvidia- compute-G06. With this, the resolver will install the latest available and applicable nvidia-compute-G06. nv-prefer-signed-open-driver then represents the latest available open driver version and restricts the nvidia- compute-G06 version to it. (bsc#1227419) * Security Update 550.90.07 (bsc#1223356) [CVE-2024-0090, CVE-2024-0091, CVE-2024-0092] * Update to 550.78 (bsc#1223454) * Update to 550.76 (bsc#1222972) * Update to 550.67 ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.0 zypper in -t patch SUSE-SLE-Micro-6.0-174=1 ## Package List: * SUSE Linux Micro 6.0 (aarch64 x86_64) * nvidia-open-driver-G06-signed-debugsource-550.142-1.1 * nvidia-open-driver-G06-signed-kmp-default-550.142_k6.4.0_20-1.1 * nvidia-open-driver-G06-signed-kmp-default-debuginfo-550.142_k6.4.0_20-1.1 ## References: * https://www.suse.com/security/cve/CVE-2024-0090.html * https://www.suse.com/security/cve/CVE-2024-0091.html * https://www.suse.com/security/cve/CVE-2024-0092.html * https://bugzilla.suse.com/show_bug.cgi?id=1222972 * https://bugzilla.suse.com/show_bug.cgi?id=1223356 * https://bugzilla.suse.com/show_bug.cgi?id=1223454 * https://bugzilla.suse.com/show_bug.cgi?id=1227417 * https://bugzilla.suse.com/show_bug.cgi?id=1227419 * https://bugzilla.suse.com/show_bug.cgi?id=1227575 * https://bugzilla.suse.com/show_bug.cgi?id=1229716 * https://bugzilla.suse.com/show_bug.cgi?id=1230368 * https://bugzilla.suse.com/show_bug.cgi?id=1230779 * https://bugzilla.suse.com/show_bug.cgi?id=1232057 * https://bugzilla.suse.com/show_bug.cgi?id=1233332 * https://bugzilla.suse.com/show_bug.cgi?id=1233673 . This notification delivers an essential enhancement for the NVIDIA open driver on SUSE Linux Micro 6.0, addressing multiple concerns.. nvidia open driver, SUSE update, Linux driver security, driver vulnerabilities. . Severity: Important. LinuxSecurity.com Team
An update that solves five vulnerabilities can now be installed.. # Security update for nvidia-open-driver-G06-signed Announcement ID: SUSE-SU-2025:0207-1 Release Date: 2025-01-21T14:44:07Z Rating: important References: * bsc#1235461 * bsc#1235871 Cross-References: * CVE-2024-0131 * CVE-2024-0147 * CVE-2024-0149 * CVE-2024-0150 * CVE-2024-53869 CVSS scores: * CVE-2024-0131 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2024-0147 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-0149 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2024-0150 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2024-53869 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H Affected Products: * Basesystem Module 15-SP6 * openSUSE Leap 15.6 * Public Cloud Module 15-SP6 * SUSE Linux Enterprise Desktop 15 SP6 * SUSE Linux Enterprise Real Time 15 SP6 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 An update that solves five vulnerabilities can now be installed. ## Description: This update for nvidia-open-driver-G06-signed fixes the following issues: * Update to 550.144.03 (bsc#1235461, bsc#1235871) * fixes CVE-2024-0131, CVE-2024-0147, CVE-2024-0149, CVE-2024-0150, CVE-2024-53869 ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * Basesystem Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP6-2025-207=1 * Public Cloud Module 15-SP6 zypper in -t patch SUSE-SLE-Module-Public-Cloud-15-SP6-2025-207=1 * openSUSE Leap 15.6 zypper in -t patch SUSE-2025-207=1 openSUSE-SLE-15.6-2025-207=1 ## Package List: * Basesystem Module 15-SP6 (aarch64 x86_64) * nvidia-open-driver-G06-signed-debugsource-550.144.03-150600.3.29.2 *nv-prefer-signed-open-driver-565.57.01-150600.3.29.2 * nvidia-open-driver-G06-signed-kmp-default-debuginfo-550.144.03_k6.4.0_150600.21-150600.3.29.2 * nvidia-open-driver-G06-signed-kmp-default-550.144.03_k6.4.0_150600.21-150600.3.29.2 * nvidia-open-driver-G06-signed-cuda-kmp-default-565.57.01_k6.4.0_150600.21-150600.3.29.2 * kernel-firmware-nvidia-gspx-G06-cuda-565.57.01-150600.3.29.2 * nvidia-open-driver-G06-signed-cuda-kmp-default-debuginfo-565.57.01_k6.4.0_150600.21-150600.3.29.2 * nvidia-open-driver-G06-signed-cuda-debugsource-565.57.01-150600.3.29.2 * nvidia-open-driver-G06-signed-default-devel-550.144.03-150600.3.29.2 * nvidia-open-driver-G06-signed-cuda-default-devel-565.57.01-150600.3.29.2 * Basesystem Module 15-SP6 (aarch64) * nvidia-open-driver-G06-signed-kmp-64kb-debuginfo-550.144.03_k6.4.0_150600.21-150600.3.29.2 * nvidia-open-driver-G06-signed-kmp-64kb-550.144.03_k6.4.0_150600.21-150600.3.29.2 * nvidia-open-driver-G06-signed-cuda-kmp-64kb-565.57.01_k6.4.0_150600.21-150600.3.29.2 * nvidia-open-driver-G06-signed-64kb-devel-550.144.03-150600.3.29.2 * nvidia-open-driver-G06-signed-cuda-kmp-64kb-debuginfo-565.57.01_k6.4.0_150600.21-150600.3.29.2 * nvidia-open-driver-G06-signed-cuda-64kb-devel-565.57.01-150600.3.29.2 * Public Cloud Module 15-SP6 (x86_64) * nvidia-open-driver-G06-signed-cuda-azure-devel-565.57.01-150600.3.29.2 * nvidia-open-driver-G06-signed-azure-devel-550.144.03-150600.3.29.2 * nvidia-open-driver-G06-signed-kmp-azure-debuginfo-550.144.03_k6.4.0_150600.6-150600.3.29.2 * nvidia-open-driver-G06-signed-cuda-kmp-azure-565.57.01_k6.4.0_150600.6-150600.3.29.2 * nvidia-open-driver-G06-signed-cuda-kmp-azure-debuginfo-565.57.01_k6.4.0_150600.6-150600.3.29.2 * nvidia-open-driver-G06-signed-kmp-azure-550.144.03_k6.4.0_150600.6-150600.3.29.2 * openSUSE Leap 15.6 (x86_64) * nvidia-open-driver-G06-signed-cuda-azure-devel-565.57.01-150600.3.29.2 *nvidia-open-driver-G06-signed-azure-devel-550.144.03-150600.3.29.2 * nvidia-open-driver-G06-signed-kmp-azure-debuginfo-550.144.03_k6.4.0_150600.6-150600.3.29.2 * nvidia-open-driver-G06-signed-cuda-kmp-azure-debuginfo-565.57.01_k6.4.0_150600.6-150600.3.29.2 * nvidia-open-driver-G06-signed-kmp-azure-550.144.03_k6.4.0_150600.6-150600.3.29.2 * nvidia-open-driver-G06-signed-cuda-kmp-azure-565.57.01_k6.4.0_150600.6-150600.3.29.2 * openSUSE Leap 15.6 (aarch64 x86_64) * nvidia-open-driver-G06-signed-kmp-default-debuginfo-550.144.03_k6.4.0_150600.21-150600.3.29.2 * nvidia-open-driver-G06-signed-debugsource-550.144.03-150600.3.29.2 * nv-prefer-signed-open-driver-565.57.01-150600.3.29.2 * nvidia-open-driver-G06-signed-kmp-default-550.144.03_k6.4.0_150600.21-150600.3.29.2 * kernel-firmware-nvidia-gspx-G06-cuda-565.57.01-150600.3.29.2 * nvidia-open-driver-G06-signed-cuda-kmp-default-565.57.01_k6.4.0_150600.21-150600.3.29.2 * nvidia-open-driver-G06-signed-cuda-kmp-default-debuginfo-565.57.01_k6.4.0_150600.21-150600.3.29.2 * nvidia-open-driver-G06-signed-cuda-debugsource-565.57.01-150600.3.29.2 * nvidia-open-driver-G06-signed-default-devel-550.144.03-150600.3.29.2 * nvidia-open-driver-G06-signed-cuda-default-devel-565.57.01-150600.3.29.2 * openSUSE Leap 15.6 (aarch64) * nvidia-open-driver-G06-signed-kmp-64kb-debuginfo-550.144.03_k6.4.0_150600.21-150600.3.29.2 * nvidia-open-driver-G06-signed-kmp-64kb-550.144.03_k6.4.0_150600.21-150600.3.29.2 * nvidia-open-driver-G06-signed-cuda-kmp-64kb-565.57.01_k6.4.0_150600.21-150600.3.29.2 * nvidia-open-driver-G06-signed-64kb-devel-550.144.03-150600.3.29.2 * nvidia-open-driver-G06-signed-cuda-kmp-64kb-debuginfo-565.57.01_k6.4.0_150600.21-150600.3.29.2 * nvidia-open-driver-G06-signed-cuda-64kb-devel-565.57.01-150600.3.29.2 ## References: * https://www.suse.com/security/cve/CVE-2024-0131.html * https://www.suse.com/security/cve/CVE-2024-0147.html * https://www.suse.com/security/cve/CVE-2024-0149.html * https://www.suse.com/security/cve/CVE-2024-0150.html * https://www.suse.com/security/cve/CVE-2024-53869.html * https://bugzilla.suse.com/show_bug.cgi?id=1235461 * https://bugzilla.suse.com/show_bug.cgi?id=1235871 . The latest update for nvidia-open-driver-G06-signed addresses critical vulnerabilities in openSUSE platforms, significantly improving system protection.. openSUSE, driver update, security advisory, system security. . Severity: Important. LinuxSecurity.com Team
* bsc#1235461 * bsc#1235871 Cross-References: * CVE-2024-0131 . # Security update for nvidia-open-driver-G06-signed Announcement ID: SUSE-SU-2025:0208-1 Release Date: 2025-01-21T14:44:38Z Rating: important References: * bsc#1235461 * bsc#1235871 Cross-References: * CVE-2024-0131 * CVE-2024-0147 * CVE-2024-0149 * CVE-2024-0150 * CVE-2024-53869 CVSS scores: * CVE-2024-0131 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2024-0147 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2024-0149 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N * CVE-2024-0150 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2024-53869 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H Affected Products: * openSUSE Leap 15.5 * Public Cloud Module 15-SP5 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP5 LTSS * SUSE Linux Enterprise Server for SAP Applications 15 SP5 An update that solves five vulnerabilities can now be installed. ## Description: This update for nvidia-open-driver-G06-signed fixes the following issues: * Update to 550.144.03 (bsc#1235461, bsc#1235871) * fixes CVE-2024-0131, CVE-2024-0147, CVE-2024-0149, CVE-2024-0150, CVE-2024-53869 ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.5 zypper in -t patch SUSE-2025-208=1 * SUSE Linux Enterprise Micro 5.5 zypper in -t patch SUSE-SLE-Micro-5.5-2025-208=1 * Public Cloud Module 15-SP5 zypper in -t patch SUSE-SLE-Module-Public-Cloud-15-SP5-2025-208=1 * SUSE Linux Enterprise HighPerformance Computing ESPOS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-ESPOS-2025-208=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-LTSS-2025-208=1 * SUSE Linux Enterprise Server 15 SP5 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP5-LTSS-2025-208=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP5-2025-208=1 ## Package List: * openSUSE Leap 15.5 (x86_64) * nvidia-open-driver-G06-signed-cuda-kmp-azure-565.57.01_k5.14.21_150500.31-150500.3.70.2 * nvidia-open-driver-G06-signed-cuda-kmp-azure-debuginfo-565.57.01_k5.14.21_150500.31-150500.3.70.2 * nvidia-open-driver-G06-signed-cuda-azure-devel-565.57.01-150500.3.70.2 * nvidia-open-driver-G06-signed-kmp-azure-debuginfo-550.144.03_k5.14.21_150500.31-150500.3.70.2 * nvidia-open-driver-G06-signed-azure-devel-550.144.03-150500.3.70.2 * nvidia-open-driver-G06-signed-kmp-azure-550.144.03_k5.14.21_150500.31-150500.3.70.2 * openSUSE Leap 15.5 (aarch64 x86_64) * kernel-firmware-nvidia-gspx-G06-cuda-565.57.01-150500.3.70.2 * nvidia-open-driver-G06-signed-cuda-debugsource-565.57.01-150500.3.70.2 * nvidia-open-driver-G06-signed-debugsource-550.144.03-150500.3.70.2 * nvidia-open-driver-G06-signed-kmp-default-debuginfo-550.144.03_k5.14.21_150500.53-150500.3.70.2 * nvidia-open-driver-G06-signed-default-devel-550.144.03-150500.3.70.2 * nvidia-open-driver-G06-signed-kmp-default-550.144.03_k5.14.21_150500.53-150500.3.70.2 * nvidia-open-driver-G06-signed-cuda-default-devel-565.57.01-150500.3.70.2 * nvidia-open-driver-G06-signed-cuda-kmp-default-565.57.01_k5.14.21_150500.53-150500.3.70.2 * nvidia-open-driver-G06-signed-cuda-kmp-default-debuginfo-565.57.01_k5.14.21_150500.53-150500.3.70.2 * nv-prefer-signed-open-driver-565.57.01-150500.3.70.2 * openSUSE Leap 15.5 (aarch64) * nvidia-open-driver-G06-signed-64kb-devel-550.144.03-150500.3.70.2 * nvidia-open-driver-G06-signed-cuda-kmp-64kb-debuginfo-565.57.01_k5.14.21_150500.53-150500.3.70.2 * nvidia-open-driver-G06-signed-kmp-64kb-debuginfo-550.144.03_k5.14.21_150500.53-150500.3.70.2 * nvidia-open-driver-G06-signed-cuda-64kb-devel-565.57.01-150500.3.70.2 * nvidia-open-driver-G06-signed-kmp-64kb-550.144.03_k5.14.21_150500.53-150500.3.70.2 * nvidia-open-driver-G06-signed-cuda-kmp-64kb-565.57.01_k5.14.21_150500.53-150500.3.70.2 * SUSE Linux Enterprise Micro 5.5 (aarch64 x86_64) * nv-prefer-signed-open-driver-565.57.01-150500.3.70.2 * kernel-firmware-nvidia-gspx-G06-cuda-565.57.01-150500.3.70.2 * nvidia-open-driver-G06-signed-cuda-debugsource-565.57.01-150500.3.70.2 * nvidia-open-driver-G06-signed-debugsource-550.144.03-150500.3.70.2 * nvidia-open-driver-G06-signed-kmp-default-debuginfo-550.144.03_k5.14.21_150500.53-150500.3.70.2 * nvidia-open-driver-G06-signed-kmp-default-550.144.03_k5.14.21_150500.53-150500.3.70.2 * nvidia-open-driver-G06-signed-cuda-kmp-default-565.57.01_k5.14.21_150500.53-150500.3.70.2 * nvidia-open-driver-G06-signed-cuda-kmp-default-debuginfo-565.57.01_k5.14.21_150500.53-150500.3.70.2 * Public Cloud Module 15-SP5 (x86_64) * nvidia-open-driver-G06-signed-cuda-kmp-azure-565.57.01_k5.14.21_150500.31-150500.3.70.2 * nvidia-open-driver-G06-signed-cuda-kmp-azure-debuginfo-565.57.01_k5.14.21_150500.31-150500.3.70.2 * nvidia-open-driver-G06-signed-cuda-azure-devel-565.57.01-150500.3.70.2 * nvidia-open-driver-G06-signed-kmp-azure-debuginfo-550.144.03_k5.14.21_150500.31-150500.3.70.2 * nvidia-open-driver-G06-signed-azure-devel-550.144.03-150500.3.70.2 * nvidia-open-driver-G06-signed-kmp-azure-550.144.03_k5.14.21_150500.31-150500.3.70.2 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (aarch64 x86_64) * kernel-firmware-nvidia-gspx-G06-cuda-565.57.01-150500.3.70.2 * nvidia-open-driver-G06-signed-cuda-debugsource-565.57.01-150500.3.70.2 *nvidia-open-driver-G06-signed-debugsource-550.144.03-150500.3.70.2 * nvidia-open-driver-G06-signed-kmp-default-debuginfo-550.144.03_k5.14.21_150500.53-150500.3.70.2 * nvidia-open-driver-G06-signed-default-devel-550.144.03-150500.3.70.2 * nvidia-open-driver-G06-signed-cuda-default-devel-565.57.01-150500.3.70.2 * nvidia-open-driver-G06-signed-kmp-default-550.144.03_k5.14.21_150500.53-150500.3.70.2 * nvidia-open-driver-G06-signed-cuda-kmp-default-565.57.01_k5.14.21_150500.53-150500.3.70.2 * nvidia-open-driver-G06-signed-cuda-kmp-default-debuginfo-565.57.01_k5.14.21_150500.53-150500.3.70.2 * nv-prefer-signed-open-driver-565.57.01-150500.3.70.2 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (aarch64) * nvidia-open-driver-G06-signed-64kb-devel-550.144.03-150500.3.70.2 * nvidia-open-driver-G06-signed-cuda-kmp-64kb-debuginfo-565.57.01_k5.14.21_150500.53-150500.3.70.2 * nvidia-open-driver-G06-signed-kmp-64kb-debuginfo-550.144.03_k5.14.21_150500.53-150500.3.70.2 * nvidia-open-driver-G06-signed-cuda-64kb-devel-565.57.01-150500.3.70.2 * nvidia-open-driver-G06-signed-kmp-64kb-550.144.03_k5.14.21_150500.53-150500.3.70.2 * nvidia-open-driver-G06-signed-cuda-kmp-64kb-565.57.01_k5.14.21_150500.53-150500.3.70.2 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (aarch64 x86_64) * kernel-firmware-nvidia-gspx-G06-cuda-565.57.01-150500.3.70.2 * nvidia-open-driver-G06-signed-cuda-debugsource-565.57.01-150500.3.70.2 * nvidia-open-driver-G06-signed-debugsource-550.144.03-150500.3.70.2 * nvidia-open-driver-G06-signed-kmp-default-debuginfo-550.144.03_k5.14.21_150500.53-150500.3.70.2 * nvidia-open-driver-G06-signed-default-devel-550.144.03-150500.3.70.2 * nvidia-open-driver-G06-signed-cuda-default-devel-565.57.01-150500.3.70.2 * nvidia-open-driver-G06-signed-kmp-default-550.144.03_k5.14.21_150500.53-150500.3.70.2 * nvidia-open-driver-G06-signed-cuda-kmp-default-565.57.01_k5.14.21_150500.53-150500.3.70.2 *nvidia-open-driver-G06-signed-cuda-kmp-default-debuginfo-565.57.01_k5.14.21_150500.53-150500.3.70.2 * nv-prefer-signed-open-driver-565.57.01-150500.3.70.2 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (aarch64) * nvidia-open-driver-G06-signed-64kb-devel-550.144.03-150500.3.70.2 * nvidia-open-driver-G06-signed-cuda-kmp-64kb-debuginfo-565.57.01_k5.14.21_150500.53-150500.3.70.2 * nvidia-open-driver-G06-signed-kmp-64kb-debuginfo-550.144.03_k5.14.21_150500.53-150500.3.70.2 * nvidia-open-driver-G06-signed-cuda-64kb-devel-565.57.01-150500.3.70.2 * nvidia-open-driver-G06-signed-kmp-64kb-550.144.03_k5.14.21_150500.53-150500.3.70.2 * nvidia-open-driver-G06-signed-cuda-kmp-64kb-565.57.01_k5.14.21_150500.53-150500.3.70.2 * SUSE Linux Enterprise Server 15 SP5 LTSS (aarch64 x86_64) * kernel-firmware-nvidia-gspx-G06-cuda-565.57.01-150500.3.70.2 * nvidia-open-driver-G06-signed-cuda-debugsource-565.57.01-150500.3.70.2 * nvidia-open-driver-G06-signed-debugsource-550.144.03-150500.3.70.2 * nvidia-open-driver-G06-signed-kmp-default-debuginfo-550.144.03_k5.14.21_150500.53-150500.3.70.2 * nvidia-open-driver-G06-signed-default-devel-550.144.03-150500.3.70.2 * nvidia-open-driver-G06-signed-cuda-default-devel-565.57.01-150500.3.70.2 * nvidia-open-driver-G06-signed-kmp-default-550.144.03_k5.14.21_150500.53-150500.3.70.2 * nvidia-open-driver-G06-signed-cuda-kmp-default-565.57.01_k5.14.21_150500.53-150500.3.70.2 * nvidia-open-driver-G06-signed-cuda-kmp-default-debuginfo-565.57.01_k5.14.21_150500.53-150500.3.70.2 * nv-prefer-signed-open-driver-565.57.01-150500.3.70.2 * SUSE Linux Enterprise Server 15 SP5 LTSS (aarch64) * nvidia-open-driver-G06-signed-64kb-devel-550.144.03-150500.3.70.2 * nvidia-open-driver-G06-signed-cuda-kmp-64kb-debuginfo-565.57.01_k5.14.21_150500.53-150500.3.70.2 * nvidia-open-driver-G06-signed-kmp-64kb-debuginfo-550.144.03_k5.14.21_150500.53-150500.3.70.2 *nvidia-open-driver-G06-signed-cuda-64kb-devel-565.57.01-150500.3.70.2 * nvidia-open-driver-G06-signed-kmp-64kb-550.144.03_k5.14.21_150500.53-150500.3.70.2 * nvidia-open-driver-G06-signed-cuda-kmp-64kb-565.57.01_k5.14.21_150500.53-150500.3.70.2 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 (x86_64) * kernel-firmware-nvidia-gspx-G06-cuda-565.57.01-150500.3.70.2 * nvidia-open-driver-G06-signed-cuda-debugsource-565.57.01-150500.3.70.2 * nvidia-open-driver-G06-signed-debugsource-550.144.03-150500.3.70.2 * nvidia-open-driver-G06-signed-kmp-default-debuginfo-550.144.03_k5.14.21_150500.53-150500.3.70.2 * nvidia-open-driver-G06-signed-default-devel-550.144.03-150500.3.70.2 * nvidia-open-driver-G06-signed-cuda-default-devel-565.57.01-150500.3.70.2 * nvidia-open-driver-G06-signed-kmp-default-550.144.03_k5.14.21_150500.53-150500.3.70.2 * nvidia-open-driver-G06-signed-cuda-kmp-default-565.57.01_k5.14.21_150500.53-150500.3.70.2 * nvidia-open-driver-G06-signed-cuda-kmp-default-debuginfo-565.57.01_k5.14.21_150500.53-150500.3.70.2 * nv-prefer-signed-open-driver-565.57.01-150500.3.70.2 ## References: * https://www.suse.com/security/cve/CVE-2024-0131.html * https://www.suse.com/security/cve/CVE-2024-0147.html * https://www.suse.com/security/cve/CVE-2024-0149.html * https://www.suse.com/security/cve/CVE-2024-0150.html * https://www.suse.com/security/cve/CVE-2024-53869.html * https://bugzilla.suse.com/show_bug.cgi?id=1235461 * https://bugzilla.suse.com/show_bug.cgi?id=1235871 . Latest patch for nvidia-open-driver-G06-signed resolving key vulnerabilities within SUSE offerings. Safeguard your infrastructure.. SUSE Updates,nvidia driver updates,security advisories,software vulnerabilities,system security. . Severity: Important. LinuxSecurity.com Team
* bsc#1223356 Cross-References: * CVE-2024-0090 * CVE-2024-0091 . # Security update for kernel-firmware-nvidia-gspx-G06, nvidia-open- driver-G06-signed Announcement ID: SUSE-SU-2024:2005-1 Rating: important References: * bsc#1223356 Cross-References: * CVE-2024-0090 * CVE-2024-0091 * CVE-2024-0092 CVSS scores: * CVE-2024-0090 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2024-0091 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-0092 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H Affected Products: * openSUSE Leap 15.4 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro 5.4 * SUSE Linux Enterprise Micro for Rancher 5.3 * SUSE Linux Enterprise Micro for Rancher 5.4 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Manager Proxy 4.3 * SUSE Manager Retail Branch Server 4.3 * SUSE Manager Server 4.3 An update that solves three vulnerabilities can now be installed. ## Description: This update for kernel-firmware-nvidia-gspx-G06, nvidia-open-driver-G06-signed fixes the following issues: Security Update 550.90.07: * CVE-2024-0090: Fixed out of bounds write (bsc#1223356). * CVE-2024-0092: Fixed incorrect exception handling (bsc#1223356). * CVE-2024-0091: Fixed untrusted pointer dereference (bsc#1223356). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.4 zypper in -t patch SUSE-2024-2005=1 * SUSE Linux Enterprise Micro for Rancher 5.3 zypper in-t patch SUSE-SLE-Micro-5.3-2024-2005=1 * SUSE Linux Enterprise Micro 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2024-2005=1 * SUSE Linux Enterprise Micro for Rancher 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2024-2005=1 * SUSE Linux Enterprise Micro 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2024-2005=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2024-2005=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2024-2005=1 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 zypper in -t patch SUSE-SLE-Product-SLED-15-SP4-LTSS-2024-2005=1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2024-2005=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2024-2005=1 * SUSE Manager Proxy 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Proxy-4.3-2024-2005=1 * SUSE Manager Retail Branch Server 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Retail-Branch- Server-4.3-2024-2005=1 * SUSE Manager Server 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Server-4.3-2024-2005=1 ## Package List: * openSUSE Leap 15.4 (aarch64 nosrc x86_64) * kernel-firmware-nvidia-gspx-G06-550.90.07-150400.9.33.1 * openSUSE Leap 15.4 (x86_64) * nvidia-open-driver-G06-signed-azure-devel-550.90.07-150400.9.62.1 * nvidia-open-driver-G06-signed-kmp-azure-debuginfo-550.90.07_k5.14.21_150400.14.75-150400.9.62.1 * nvidia-open-driver-G06-signed-kmp-azure-550.90.07_k5.14.21_150400.14.75-150400.9.62.1 * openSUSE Leap 15.4 (aarch64 x86_64) * nvidia-open-driver-G06-signed-debugsource-550.90.07-150400.9.62.1 * nvidia-open-driver-G06-signed-kmp-default-550.90.07_k5.14.21_150400.24.119-150400.9.62.1 *nvidia-open-driver-G06-signed-kmp-default-debuginfo-550.90.07_k5.14.21_150400.24.119-150400.9.62.1 * nvidia-open-driver-G06-signed-default-devel-550.90.07-150400.9.62.1 * openSUSE Leap 15.4 (aarch64) * nvidia-open-driver-G06-signed-kmp-64kb-550.90.07_k5.14.21_150400.24.119-150400.9.62.1 * nvidia-open-driver-G06-signed-64kb-devel-550.90.07-150400.9.62.1 * nvidia-open-driver-G06-signed-kmp-64kb-debuginfo-550.90.07_k5.14.21_150400.24.119-150400.9.62.1 * SUSE Linux Enterprise Micro for Rancher 5.3 (aarch64 nosrc x86_64) * kernel-firmware-nvidia-gspx-G06-550.90.07-150400.9.33.1 * SUSE Linux Enterprise Micro for Rancher 5.3 (aarch64 x86_64) * nvidia-open-driver-G06-signed-debugsource-550.90.07-150400.9.62.1 * nvidia-open-driver-G06-signed-kmp-default-550.90.07_k5.14.21_150400.24.119-150400.9.62.1 * nvidia-open-driver-G06-signed-kmp-default-debuginfo-550.90.07_k5.14.21_150400.24.119-150400.9.62.1 * SUSE Linux Enterprise Micro 5.3 (aarch64 nosrc x86_64) * kernel-firmware-nvidia-gspx-G06-550.90.07-150400.9.33.1 * SUSE Linux Enterprise Micro 5.3 (aarch64 x86_64) * nvidia-open-driver-G06-signed-debugsource-550.90.07-150400.9.62.1 * nvidia-open-driver-G06-signed-kmp-default-550.90.07_k5.14.21_150400.24.119-150400.9.62.1 * nvidia-open-driver-G06-signed-kmp-default-debuginfo-550.90.07_k5.14.21_150400.24.119-150400.9.62.1 * SUSE Linux Enterprise Micro for Rancher 5.4 (aarch64 nosrc x86_64) * kernel-firmware-nvidia-gspx-G06-550.90.07-150400.9.33.1 * SUSE Linux Enterprise Micro for Rancher 5.4 (aarch64 x86_64) * nvidia-open-driver-G06-signed-debugsource-550.90.07-150400.9.62.1 * nvidia-open-driver-G06-signed-kmp-default-550.90.07_k5.14.21_150400.24.119-150400.9.62.1 * nvidia-open-driver-G06-signed-kmp-default-debuginfo-550.90.07_k5.14.21_150400.24.119-150400.9.62.1 * SUSE Linux Enterprise Micro 5.4 (aarch64 nosrc x86_64) * kernel-firmware-nvidia-gspx-G06-550.90.07-150400.9.33.1 * SUSE Linux Enterprise Micro 5.4 (aarch64 x86_64) *nvidia-open-driver-G06-signed-debugsource-550.90.07-150400.9.62.1 * nvidia-open-driver-G06-signed-kmp-default-550.90.07_k5.14.21_150400.24.119-150400.9.62.1 * nvidia-open-driver-G06-signed-kmp-default-debuginfo-550.90.07_k5.14.21_150400.24.119-150400.9.62.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64 nosrc x86_64) * kernel-firmware-nvidia-gspx-G06-550.90.07-150400.9.33.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64) * nvidia-open-driver-G06-signed-kmp-64kb-550.90.07_k5.14.21_150400.24.119-150400.9.62.1 * nvidia-open-driver-G06-signed-64kb-devel-550.90.07-150400.9.62.1 * nvidia-open-driver-G06-signed-kmp-64kb-debuginfo-550.90.07_k5.14.21_150400.24.119-150400.9.62.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64 x86_64) * nvidia-open-driver-G06-signed-debugsource-550.90.07-150400.9.62.1 * nvidia-open-driver-G06-signed-kmp-default-550.90.07_k5.14.21_150400.24.119-150400.9.62.1 * nvidia-open-driver-G06-signed-kmp-default-debuginfo-550.90.07_k5.14.21_150400.24.119-150400.9.62.1 * nvidia-open-driver-G06-signed-default-devel-550.90.07-150400.9.62.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64 nosrc x86_64) * kernel-firmware-nvidia-gspx-G06-550.90.07-150400.9.33.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64) * nvidia-open-driver-G06-signed-kmp-64kb-550.90.07_k5.14.21_150400.24.119-150400.9.62.1 * nvidia-open-driver-G06-signed-64kb-devel-550.90.07-150400.9.62.1 * nvidia-open-driver-G06-signed-kmp-64kb-debuginfo-550.90.07_k5.14.21_150400.24.119-150400.9.62.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64 x86_64) * nvidia-open-driver-G06-signed-debugsource-550.90.07-150400.9.62.1 * nvidia-open-driver-G06-signed-kmp-default-550.90.07_k5.14.21_150400.24.119-150400.9.62.1 * nvidia-open-driver-G06-signed-kmp-default-debuginfo-550.90.07_k5.14.21_150400.24.119-150400.9.62.1 * nvidia-open-driver-G06-signed-default-devel-550.90.07-150400.9.62.1 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 (nosrc x86_64) * kernel-firmware-nvidia-gspx-G06-550.90.07-150400.9.33.1 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 (x86_64) * nvidia-open-driver-G06-signed-debugsource-550.90.07-150400.9.62.1 * nvidia-open-driver-G06-signed-kmp-default-550.90.07_k5.14.21_150400.24.119-150400.9.62.1 * nvidia-open-driver-G06-signed-kmp-default-debuginfo-550.90.07_k5.14.21_150400.24.119-150400.9.62.1 * nvidia-open-driver-G06-signed-default-devel-550.90.07-150400.9.62.1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (aarch64 nosrc x86_64) * kernel-firmware-nvidia-gspx-G06-550.90.07-150400.9.33.1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (aarch64) * nvidia-open-driver-G06-signed-kmp-64kb-550.90.07_k5.14.21_150400.24.119-150400.9.62.1 * nvidia-open-driver-G06-signed-64kb-devel-550.90.07-150400.9.62.1 * nvidia-open-driver-G06-signed-kmp-64kb-debuginfo-550.90.07_k5.14.21_150400.24.119-150400.9.62.1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (aarch64 x86_64) * nvidia-open-driver-G06-signed-debugsource-550.90.07-150400.9.62.1 * nvidia-open-driver-G06-signed-kmp-default-550.90.07_k5.14.21_150400.24.119-150400.9.62.1 * nvidia-open-driver-G06-signed-kmp-default-debuginfo-550.90.07_k5.14.21_150400.24.119-150400.9.62.1 * nvidia-open-driver-G06-signed-default-devel-550.90.07-150400.9.62.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (nosrc x86_64) * kernel-firmware-nvidia-gspx-G06-550.90.07-150400.9.33.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (x86_64) * nvidia-open-driver-G06-signed-debugsource-550.90.07-150400.9.62.1 * nvidia-open-driver-G06-signed-kmp-default-550.90.07_k5.14.21_150400.24.119-150400.9.62.1 * nvidia-open-driver-G06-signed-kmp-default-debuginfo-550.90.07_k5.14.21_150400.24.119-150400.9.62.1 * nvidia-open-driver-G06-signed-default-devel-550.90.07-150400.9.62.1 *SUSE Manager Proxy 4.3 (nosrc x86_64) * kernel-firmware-nvidia-gspx-G06-550.90.07-150400.9.33.1 * SUSE Manager Proxy 4.3 (x86_64) * nvidia-open-driver-G06-signed-debugsource-550.90.07-150400.9.62.1 * nvidia-open-driver-G06-signed-kmp-default-550.90.07_k5.14.21_150400.24.119-150400.9.62.1 * nvidia-open-driver-G06-signed-kmp-default-debuginfo-550.90.07_k5.14.21_150400.24.119-150400.9.62.1 * nvidia-open-driver-G06-signed-default-devel-550.90.07-150400.9.62.1 * SUSE Manager Retail Branch Server 4.3 (nosrc x86_64) * kernel-firmware-nvidia-gspx-G06-550.90.07-150400.9.33.1 * SUSE Manager Retail Branch Server 4.3 (x86_64) * nvidia-open-driver-G06-signed-debugsource-550.90.07-150400.9.62.1 * nvidia-open-driver-G06-signed-kmp-default-550.90.07_k5.14.21_150400.24.119-150400.9.62.1 * nvidia-open-driver-G06-signed-kmp-default-debuginfo-550.90.07_k5.14.21_150400.24.119-150400.9.62.1 * nvidia-open-driver-G06-signed-default-devel-550.90.07-150400.9.62.1 * SUSE Manager Server 4.3 (nosrc x86_64) * kernel-firmware-nvidia-gspx-G06-550.90.07-150400.9.33.1 * SUSE Manager Server 4.3 (x86_64) * nvidia-open-driver-G06-signed-debugsource-550.90.07-150400.9.62.1 * nvidia-open-driver-G06-signed-kmp-default-550.90.07_k5.14.21_150400.24.119-150400.9.62.1 * nvidia-open-driver-G06-signed-kmp-default-debuginfo-550.90.07_k5.14.21_150400.24.119-150400.9.62.1 * nvidia-open-driver-G06-signed-default-devel-550.90.07-150400.9.62.1 ## References: * https://www.suse.com/security/cve/CVE-2024-0090.html * https://www.suse.com/security/cve/CVE-2024-0091.html * https://www.suse.com/security/cve/CVE-2024-0092.html * https://bugzilla.suse.com/show_bug.cgi?id=1223356 . Crucial enhancement released for Fedora kernel components and AMD graphical drivers resolving several high-severity vulnerabilities.. SUSE Security Update,nvidia drivers,kernel firmware,issue resolution. . Severity: Important. LinuxSecurity.com Team
* bsc#1223356 Cross-References: * CVE-2024-0090 * CVE-2024-0091 . # Security update for kernel-firmware-nvidia-gspx-G06, nvidia-open- driver-G06-signed Announcement ID: SUSE-SU-2024:1990-1 Rating: important References: * bsc#1223356 Cross-References: * CVE-2024-0090 * CVE-2024-0091 * CVE-2024-0092 CVSS scores: * CVE-2024-0090 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H * CVE-2024-0091 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2024-0092 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H Affected Products: * Basesystem Module 15-SP5 * openSUSE Leap 15.5 * Public Cloud Module 15-SP5 * SUSE Linux Enterprise Desktop 15 SP5 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 An update that solves three vulnerabilities can now be installed. ## Description: This update for kernel-firmware-nvidia-gspx-G06, nvidia-open-driver-G06-signed fixes the following issues: Security Update 550.90.07: * CVE-2024-0090: Fixed out of bounds write (bsc#1223356). * CVE-2024-0092: Fixed incorrect exception handling (bsc#1223356). * CVE-2024-0091: Fixed untrusted pointer dereference (bsc#1223356). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.5 zypper in -t patch SUSE-2024-1990=1 openSUSE-SLE-15.5-2024-1990=1 * SUSE Linux Enterprise Micro 5.5 zypper in -t patch SUSE-SLE-Micro-5.5-2024-1990=1 * Basesystem Module 15-SP5 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP5-2024-1990=1 * Public Cloud Module 15-SP5 zypper in -t patch SUSE-SLE-Module-Public-Cloud-15-SP5-2024-1990=1 ## Package List: * openSUSE Leap 15.5 (aarch64 nosrcx86_64) * kernel-firmware-nvidia-gspx-G06-550.90.07-150500.11.29.1 * openSUSE Leap 15.5 (x86_64) * nvidia-open-driver-G06-signed-azure-devel-550.90.07-150500.3.47.1 * nvidia-open-driver-G06-signed-kmp-azure-550.90.07_k5.14.21_150500.33.54-150500.3.47.1 * nvidia-open-driver-G06-signed-kmp-azure-debuginfo-550.90.07_k5.14.21_150500.33.54-150500.3.47.1 * openSUSE Leap 15.5 (aarch64 x86_64) * nvidia-open-driver-G06-signed-kmp-default-debuginfo-550.90.07_k5.14.21_150500.55.65-150500.3.47.1 * nvidia-open-driver-G06-signed-debugsource-550.90.07-150500.3.47.1 * nvidia-open-driver-G06-signed-default-devel-550.90.07-150500.3.47.1 * nvidia-open-driver-G06-signed-kmp-default-550.90.07_k5.14.21_150500.55.65-150500.3.47.1 * openSUSE Leap 15.5 (aarch64) * nvidia-open-driver-G06-signed-64kb-devel-550.90.07-150500.3.47.1 * nvidia-open-driver-G06-signed-kmp-64kb-debuginfo-550.90.07_k5.14.21_150500.55.65-150500.3.47.1 * nvidia-open-driver-G06-signed-kmp-64kb-550.90.07_k5.14.21_150500.55.65-150500.3.47.1 * SUSE Linux Enterprise Micro 5.5 (aarch64 nosrc x86_64) * kernel-firmware-nvidia-gspx-G06-550.90.07-150500.11.29.1 * SUSE Linux Enterprise Micro 5.5 (aarch64 x86_64) * nvidia-open-driver-G06-signed-kmp-default-debuginfo-550.90.07_k5.14.21_150500.55.65-150500.3.47.1 * nvidia-open-driver-G06-signed-kmp-default-550.90.07_k5.14.21_150500.55.65-150500.3.47.1 * Basesystem Module 15-SP5 (aarch64 nosrc x86_64) * kernel-firmware-nvidia-gspx-G06-550.90.07-150500.11.29.1 * Basesystem Module 15-SP5 (aarch64) * nvidia-open-driver-G06-signed-64kb-devel-550.90.07-150500.3.47.1 * nvidia-open-driver-G06-signed-kmp-64kb-debuginfo-550.90.07_k5.14.21_150500.55.65-150500.3.47.1 * nvidia-open-driver-G06-signed-kmp-64kb-550.90.07_k5.14.21_150500.55.65-150500.3.47.1 * Basesystem Module 15-SP5 (aarch64 x86_64) * nvidia-open-driver-G06-signed-kmp-default-debuginfo-550.90.07_k5.14.21_150500.55.65-150500.3.47.1 *nvidia-open-driver-G06-signed-debugsource-550.90.07-150500.3.47.1 * nvidia-open-driver-G06-signed-default-devel-550.90.07-150500.3.47.1 * nvidia-open-driver-G06-signed-kmp-default-550.90.07_k5.14.21_150500.55.65-150500.3.47.1 * Public Cloud Module 15-SP5 (x86_64) * nvidia-open-driver-G06-signed-azure-devel-550.90.07-150500.3.47.1 * nvidia-open-driver-G06-signed-kmp-azure-550.90.07_k5.14.21_150500.33.54-150500.3.47.1 * nvidia-open-driver-G06-signed-kmp-azure-debuginfo-550.90.07_k5.14.21_150500.33.54-150500.3.47.1 ## References: * https://www.suse.com/security/cve/CVE-2024-0090.html * https://www.suse.com/security/cve/CVE-2024-0091.html * https://www.suse.com/security/cve/CVE-2024-0092.html * https://bugzilla.suse.com/show_bug.cgi?id=1223356 . Apply critical patches for the kernel-firmware-nvidia-gspx-G06 and nvidia-open-driver-G06-signed to address potential vulnerabilities.. SUSE Linux, Nvidia Driver Security, Kernel Update, SUSE Advisory, Security Patch. . Severity: Important. LinuxSecurity.com Team
This update for kernel-firmware-nvidia-gspx-G06, nvidia-open-driver-G06-signed fixes the following issues: Update to 550.54.14. # Security update for kernel-firmware-nvidia-gspx-G06, nvidia-open- driver-G06-signed Announcement ID: SUSE-SU-2024:0770-1 Rating: important References: * bsc#1220552 * jsc#PED-7117 Cross-References: * CVE-2022-42265 * CVE-2024-0074 * CVE-2024-0075 CVSS scores: * CVE-2022-42265 ( SUSE ): 5.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L * CVE-2022-42265 ( NVD ): 5.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L * CVE-2024-0074 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H * CVE-2024-0075 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H Affected Products: * openSUSE Leap 15.4 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro 5.4 * SUSE Linux Enterprise Micro for Rancher 5.3 * SUSE Linux Enterprise Micro for Rancher 5.4 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Manager Proxy 4.3 * SUSE Manager Retail Branch Server 4.3 * SUSE Manager Server 4.3 An update that solves three vulnerabilities and contains one feature can now be installed. ## Description: This update for kernel-firmware-nvidia-gspx-G06, nvidia-open-driver-G06-signed fixes the following issues: Update to 550.54.14 * Added vGPU Host and vGPU Guest support. For vGPU Host, please refer to the README.vgpu packaged in the vGPU Host Package for more details. Security issues fixed: * CVE-2024-0074: A user could trigger a NULL ptr dereference. * CVE-2024-0075: A user could overwrite the end of a buffer, leading to crashes or code execution. * CVE-2022-42265: A unprivileged user could trigger an integer overflowwhich could lead to crashes or code execution. * create /run/udev/static_node-tags/uaccess/nvidia${devid} symlinks also during modprobing the nvidia module; this changes the issue of not having access to /dev/nvidia${devid}, when gfxcard has been replaced by a different gfx card after installing the driver * provide nvidia-open-driver-G06-kmp (jsc#PED-7117) * this makes it easy to replace the package from nVidia's CUDA repository with this presigned package ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Micro for Rancher 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2024-770=1 * SUSE Linux Enterprise Micro 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2024-770=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2024-770=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2024-770=1 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 zypper in -t patch SUSE-SLE-Product-SLED-15-SP4-LTSS-2024-770=1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2024-770=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2024-770=1 * SUSE Manager Proxy 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Proxy-4.3-2024-770=1 * SUSE Manager Retail Branch Server 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Retail-Branch- Server-4.3-2024-770=1 * SUSE Manager Server 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Server-4.3-2024-770=1 * openSUSE Leap 15.4 zypper in -t patch SUSE-2024-770=1 * SUSE Linux Enterprise Micro for Rancher 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2024-770=1 * SUSE Linux Enterprise Micro 5.3 zypper in -t patchSUSE-SLE-Micro-5.3-2024-770=1 ## Package List: * SUSE Linux Enterprise Micro for Rancher 5.4 (aarch64 nosrc x86_64) * kernel-firmware-nvidia-gspx-G06-550.54.14-150400.9.21.1 * SUSE Linux Enterprise Micro for Rancher 5.4 (aarch64 x86_64) * nvidia-open-driver-G06-signed-kmp-default-550.54.14_k5.14.21_150400.24.108-150400.9.50.1 * nvidia-open-driver-G06-signed-debugsource-550.54.14-150400.9.50.1 * nvidia-open-driver-G06-signed-kmp-default-debuginfo-550.54.14_k5.14.21_150400.24.108-150400.9.50.1 * SUSE Linux Enterprise Micro 5.4 (aarch64 nosrc x86_64) * kernel-firmware-nvidia-gspx-G06-550.54.14-150400.9.21.1 * SUSE Linux Enterprise Micro 5.4 (aarch64 x86_64) * nvidia-open-driver-G06-signed-kmp-default-550.54.14_k5.14.21_150400.24.108-150400.9.50.1 * nvidia-open-driver-G06-signed-debugsource-550.54.14-150400.9.50.1 * nvidia-open-driver-G06-signed-kmp-default-debuginfo-550.54.14_k5.14.21_150400.24.108-150400.9.50.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64 nosrc x86_64) * kernel-firmware-nvidia-gspx-G06-550.54.14-150400.9.21.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64) * nvidia-open-driver-G06-signed-kmp-64kb-debuginfo-550.54.14_k5.14.21_150400.24.108-150400.9.50.1 * nvidia-open-driver-G06-signed-64kb-devel-550.54.14-150400.9.50.1 * nvidia-open-driver-G06-signed-kmp-64kb-550.54.14_k5.14.21_150400.24.108-150400.9.50.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64 x86_64) * nvidia-open-driver-G06-signed-kmp-default-550.54.14_k5.14.21_150400.24.108-150400.9.50.1 * nvidia-open-driver-G06-signed-debugsource-550.54.14-150400.9.50.1 * nvidia-open-driver-G06-signed-default-devel-550.54.14-150400.9.50.1 * nvidia-open-driver-G06-signed-kmp-default-debuginfo-550.54.14_k5.14.21_150400.24.108-150400.9.50.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64 nosrc x86_64) * kernel-firmware-nvidia-gspx-G06-550.54.14-150400.9.21.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4(aarch64) * nvidia-open-driver-G06-signed-kmp-64kb-debuginfo-550.54.14_k5.14.21_150400.24.108-150400.9.50.1 * nvidia-open-driver-G06-signed-64kb-devel-550.54.14-150400.9.50.1 * nvidia-open-driver-G06-signed-kmp-64kb-550.54.14_k5.14.21_150400.24.108-150400.9.50.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64 x86_64) * nvidia-open-driver-G06-signed-kmp-default-550.54.14_k5.14.21_150400.24.108-150400.9.50.1 * nvidia-open-driver-G06-signed-debugsource-550.54.14-150400.9.50.1 * nvidia-open-driver-G06-signed-default-devel-550.54.14-150400.9.50.1 * nvidia-open-driver-G06-signed-kmp-default-debuginfo-550.54.14_k5.14.21_150400.24.108-150400.9.50.1 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 (nosrc x86_64) * kernel-firmware-nvidia-gspx-G06-550.54.14-150400.9.21.1 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 (x86_64) * nvidia-open-driver-G06-signed-kmp-default-550.54.14_k5.14.21_150400.24.108-150400.9.50.1 * nvidia-open-driver-G06-signed-debugsource-550.54.14-150400.9.50.1 * nvidia-open-driver-G06-signed-default-devel-550.54.14-150400.9.50.1 * nvidia-open-driver-G06-signed-kmp-default-debuginfo-550.54.14_k5.14.21_150400.24.108-150400.9.50.1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (aarch64 nosrc x86_64) * kernel-firmware-nvidia-gspx-G06-550.54.14-150400.9.21.1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (aarch64) * nvidia-open-driver-G06-signed-kmp-64kb-debuginfo-550.54.14_k5.14.21_150400.24.108-150400.9.50.1 * nvidia-open-driver-G06-signed-64kb-devel-550.54.14-150400.9.50.1 * nvidia-open-driver-G06-signed-kmp-64kb-550.54.14_k5.14.21_150400.24.108-150400.9.50.1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (aarch64 x86_64) * nvidia-open-driver-G06-signed-kmp-default-550.54.14_k5.14.21_150400.24.108-150400.9.50.1 * nvidia-open-driver-G06-signed-debugsource-550.54.14-150400.9.50.1 * nvidia-open-driver-G06-signed-default-devel-550.54.14-150400.9.50.1 *nvidia-open-driver-G06-signed-kmp-default-debuginfo-550.54.14_k5.14.21_150400.24.108-150400.9.50.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (nosrc x86_64) * kernel-firmware-nvidia-gspx-G06-550.54.14-150400.9.21.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (x86_64) * nvidia-open-driver-G06-signed-kmp-default-550.54.14_k5.14.21_150400.24.108-150400.9.50.1 * nvidia-open-driver-G06-signed-debugsource-550.54.14-150400.9.50.1 * nvidia-open-driver-G06-signed-default-devel-550.54.14-150400.9.50.1 * nvidia-open-driver-G06-signed-kmp-default-debuginfo-550.54.14_k5.14.21_150400.24.108-150400.9.50.1 * SUSE Manager Proxy 4.3 (nosrc x86_64) * kernel-firmware-nvidia-gspx-G06-550.54.14-150400.9.21.1 * SUSE Manager Proxy 4.3 (x86_64) * nvidia-open-driver-G06-signed-kmp-default-550.54.14_k5.14.21_150400.24.108-150400.9.50.1 * nvidia-open-driver-G06-signed-debugsource-550.54.14-150400.9.50.1 * nvidia-open-driver-G06-signed-default-devel-550.54.14-150400.9.50.1 * nvidia-open-driver-G06-signed-kmp-default-debuginfo-550.54.14_k5.14.21_150400.24.108-150400.9.50.1 * SUSE Manager Retail Branch Server 4.3 (nosrc x86_64) * kernel-firmware-nvidia-gspx-G06-550.54.14-150400.9.21.1 * SUSE Manager Retail Branch Server 4.3 (x86_64) * nvidia-open-driver-G06-signed-kmp-default-550.54.14_k5.14.21_150400.24.108-150400.9.50.1 * nvidia-open-driver-G06-signed-debugsource-550.54.14-150400.9.50.1 * nvidia-open-driver-G06-signed-default-devel-550.54.14-150400.9.50.1 * nvidia-open-driver-G06-signed-kmp-default-debuginfo-550.54.14_k5.14.21_150400.24.108-150400.9.50.1 * SUSE Manager Server 4.3 (nosrc x86_64) * kernel-firmware-nvidia-gspx-G06-550.54.14-150400.9.21.1 * SUSE Manager Server 4.3 (x86_64) * nvidia-open-driver-G06-signed-kmp-default-550.54.14_k5.14.21_150400.24.108-150400.9.50.1 * nvidia-open-driver-G06-signed-debugsource-550.54.14-150400.9.50.1 * nvidia-open-driver-G06-signed-default-devel-550.54.14-150400.9.50.1 *nvidia-open-driver-G06-signed-kmp-default-debuginfo-550.54.14_k5.14.21_150400.24.108-150400.9.50.1 * openSUSE Leap 15.4 (aarch64 nosrc x86_64) * kernel-firmware-nvidia-gspx-G06-550.54.14-150400.9.21.1 * openSUSE Leap 15.4 (x86_64) * nvidia-open-driver-G06-signed-kmp-azure-debuginfo-550.54.14_k5.14.21_150400.14.75-150400.9.50.1 * nvidia-open-driver-G06-signed-kmp-azure-550.54.14_k5.14.21_150400.14.75-150400.9.50.1 * nvidia-open-driver-G06-signed-azure-devel-550.54.14-150400.9.50.1 * openSUSE Leap 15.4 (aarch64 x86_64) * nvidia-open-driver-G06-signed-kmp-default-550.54.14_k5.14.21_150400.24.108-150400.9.50.1 * nvidia-open-driver-G06-signed-debugsource-550.54.14-150400.9.50.1 * nvidia-open-driver-G06-signed-default-devel-550.54.14-150400.9.50.1 * nvidia-open-driver-G06-signed-kmp-default-debuginfo-550.54.14_k5.14.21_150400.24.108-150400.9.50.1 * openSUSE Leap 15.4 (aarch64) * nvidia-open-driver-G06-signed-kmp-64kb-debuginfo-550.54.14_k5.14.21_150400.24.108-150400.9.50.1 * nvidia-open-driver-G06-signed-64kb-devel-550.54.14-150400.9.50.1 * nvidia-open-driver-G06-signed-kmp-64kb-550.54.14_k5.14.21_150400.24.108-150400.9.50.1 * SUSE Linux Enterprise Micro for Rancher 5.3 (aarch64 nosrc x86_64) * kernel-firmware-nvidia-gspx-G06-550.54.14-150400.9.21.1 * SUSE Linux Enterprise Micro for Rancher 5.3 (aarch64 x86_64) * nvidia-open-driver-G06-signed-kmp-default-550.54.14_k5.14.21_150400.24.108-150400.9.50.1 * nvidia-open-driver-G06-signed-debugsource-550.54.14-150400.9.50.1 * nvidia-open-driver-G06-signed-kmp-default-debuginfo-550.54.14_k5.14.21_150400.24.108-150400.9.50.1 * SUSE Linux Enterprise Micro 5.3 (aarch64 nosrc x86_64) * kernel-firmware-nvidia-gspx-G06-550.54.14-150400.9.21.1 * SUSE Linux Enterprise Micro 5.3 (aarch64 x86_64) * nvidia-open-driver-G06-signed-kmp-default-550.54.14_k5.14.21_150400.24.108-150400.9.50.1 * nvidia-open-driver-G06-signed-debugsource-550.54.14-150400.9.50.1 * nvidia-open-driver-G06-signed-kmp-default-debuginfo-550.54.14_k5.14.21_150400.24.108-150400.9.50.1 ##References: * https://www.suse.com/security/cve/CVE-2022-42265.html * https://www.suse.com/security/cve/CVE-2024-0074.html * https://www.suse.com/security/cve/CVE-2024-0075.html * https://bugzilla.suse.com/show_bug.cgi?id=1220552 * . Enhancements for the nvidia-gspx-G06 kernel firmware and nvidia drivers tackle critical vulnerabilities. Ensure your system remains secure and current.. openSUSE Security,NVIDIA Driver Fixes,KERNEL Firmware Updates,Linux System Patches. . Severity: Important. LinuxSecurity.com Team
Get the latest Linux and open source security news straight to your inbox.