Описание
NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager (nvidia.ko), where it may lead to a use-after-free, which in turn may cause denial of service. This attack is complex to carry out because the attacker needs to have control over freeing some host side resources out of sequence, which requires elevated privileges.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| nvidia-graphics-drivers | fixed | 470.129.06-1 | package | |
| nvidia-graphics-drivers | fixed | 470.129.06-5~deb11u1 | bullseye | package |
| nvidia-graphics-drivers | ignored | buster | package | |
| nvidia-graphics-drivers-tesla-418 | unfixed | package | ||
| nvidia-graphics-drivers-tesla-418 | ignored | bullseye | package | |
| nvidia-graphics-drivers-tesla-450 | fixed | 450.191.01-1 | package | |
| nvidia-graphics-drivers-tesla-450 | fixed | 450.191.01-1~deb11u1 | bullseye | package |
| nvidia-graphics-drivers-tesla-460 | unfixed | package | ||
| nvidia-graphics-drivers-tesla-460 | no-dsa | bullseye | package | |
| nvidia-graphics-drivers-tesla-470 | fixed | 470.129.06-1 | package | |
| nvidia-graphics-drivers-tesla-470 | no-dsa | bullseye | package | |
| nvidia-graphics-drivers-tesla-510 | fixed | 510.73.08-1 | experimental | package |
| nvidia-graphics-drivers-tesla-510 | fixed | 510.73.08-2 | package |
Примечания
https://nvidia.custhelp.com/app/answers/detail/a_id/5353
EPSS
Связанные уязвимости
NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager (nvidia.ko), where it may lead to a use-after-free, which in turn may cause denial of service. This attack is complex to carry out because the attacker needs to have control over freeing some host side resources out of sequence, which requires elevated privileges.
NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager (nvidia.ko), where it may lead to a use-after-free, which in turn may cause denial of service. This attack is complex to carry out because the attacker needs to have control over freeing some host side resources out of sequence, which requires elevated privileges.
NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager (nvidia.ko), where it may lead to a use-after-free, which in turn may cause denial of service. This attack is complex to carry out because the attacker needs to have control over freeing some host side resources out of sequence, which requires elevated privileges.
Уязвимость модуля nvidia.ko компонента NVIDIA Virtual GPU Manager драйвера виртуальных графических процессоров NVIDIA Virtual GPU, позволяющая нарушителю вызвать отказ в обслуживании
EPSS