Summary: | <x11-drivers/nvidia-drivers-295.71 <x11-drivers/nvidia-drivers-304.32 - privilege escalation through user space access to all memory regions through the VGA window | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Jeroen Roovers (RETIRED) <jer> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED DUPLICATE | ||
Severity: | normal | CC: | cardoe, spock, xarthisius |
Priority: | Normal | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | http://nvidia.custhelp.com/app/answers/detail/a_id/3140 | ||
Whiteboard: | |||
Package list: | Runtime testing required: | --- |
Description
Jeroen Roovers (RETIRED)
2012-08-07 13:40:53 UTC
In related news: *nvidia-drivers-302.17-r1 (05 Aug 2012) *nvidia-drivers-295.59-r1 (05 Aug 2012) 05 Aug 2012; Doug Goldstein <cardoe@gentoo.org> +files/nvidia-blacklist-vga-pmu-registers-256-304.diff, +nvidia-drivers-295.59-r1.ebuild, -nvidia-drivers-302.17.ebuild, +nvidia-drivers-302.17-r1.ebuild: Fix CVE-2012-xxxx. With access to /dev/nvidia* a malicious user could exploit the VGA window size to read/write from kernel memory and gain root access. *** This bug has been marked as a duplicate of bug 429614 *** Oh right. Maintainers weren't CC'd then. |