Summary: | <dev-util/nvidia-cuda-toolkit-12.1.0: multiple vulnerabilities | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | John Helmert III <ajak> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | CONFIRMED --- | ||
Severity: | trivial | CC: | ajak, sci |
Priority: | Normal | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | https://nvidia.custhelp.com/app/answers/detail/a_id/5456 | ||
Whiteboard: | ~1 [noglsa cleanup] | ||
Package list: | Runtime testing required: | --- |
Description
John Helmert III
2023-04-24 02:40:59 UTC
CVE-2023-0193 (https://nvidia.custhelp.com/app/answers/detail/a_id/5446): NVIDIA CUDA Toolkit SDK contains a vulnerability in cuobjdump, where a local user running the tool against a malicious binary may cause an out-of-bounds read, which may result in a limited denial of service and limited information disclosure. Fix is 12.1 (so should be fixed in-tree, but including here for tracking) |