Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

suse-cvrf логотип

SUSE-SU-2025:03062-1

Опубликовано: 03 сент. 2025
Источник: suse-cvrf

Описание

Security update for nvidia-open-driver-G06-signed

This update for nvidia-open-driver-G06-signed fixes the following issues:

Updated CUDA variant to 580.65.06:

  • CVE-2025-23277: Fixed access memory outside bounds permitted under normal use cases in NVIDIA Display Driver (bsc#1247528)
  • CVE-2025-23278: Fixed improper index validation by issuing a call with crafted parameters in NVIDIA Display Driver (bsc#1247529)
  • CVE-2025-23286: Fixed invalid memory read in NVIDIA GPU Display Driver (bsc#1247530)
  • CVE-2025-23283: Fixed stack buffer overflow triggerable by a malicious guest in Virtual GPU Manager in NVIDIA vGPU software (bsc#1247531)
  • CVE-2025-23279: Fixed race condition that lead to privileges escalations in NVIDIA .run Installer (bsc#1247532)

Updated non-CUDA variant to 570.172.08 (bsc#1246327)

Список пакетов

SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS
nv-prefer-signed-open-driver-580.65.06-150500.3.73.7
nvidia-open-driver-G06-signed-64kb-devel-570.172.08-150500.3.73.7
nvidia-open-driver-G06-signed-cuda-64kb-devel-580.65.06-150500.3.73.7
nvidia-open-driver-G06-signed-cuda-default-devel-580.65.06-150500.3.73.7
nvidia-open-driver-G06-signed-cuda-kmp-64kb-580.65.06_k5.14.21_150500.55.116-150500.3.73.7
nvidia-open-driver-G06-signed-cuda-kmp-default-580.65.06_k5.14.21_150500.55.116-150500.3.73.7
nvidia-open-driver-G06-signed-default-devel-570.172.08-150500.3.73.7
nvidia-open-driver-G06-signed-kmp-64kb-570.172.08_k5.14.21_150500.55.116-150500.3.73.7
nvidia-open-driver-G06-signed-kmp-default-570.172.08_k5.14.21_150500.55.116-150500.3.73.7
SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS
nv-prefer-signed-open-driver-580.65.06-150500.3.73.7
nvidia-open-driver-G06-signed-64kb-devel-570.172.08-150500.3.73.7
nvidia-open-driver-G06-signed-cuda-64kb-devel-580.65.06-150500.3.73.7
nvidia-open-driver-G06-signed-cuda-default-devel-580.65.06-150500.3.73.7
nvidia-open-driver-G06-signed-cuda-kmp-64kb-580.65.06_k5.14.21_150500.55.116-150500.3.73.7
nvidia-open-driver-G06-signed-cuda-kmp-default-580.65.06_k5.14.21_150500.55.116-150500.3.73.7
nvidia-open-driver-G06-signed-default-devel-570.172.08-150500.3.73.7
nvidia-open-driver-G06-signed-kmp-64kb-570.172.08_k5.14.21_150500.55.116-150500.3.73.7
nvidia-open-driver-G06-signed-kmp-default-570.172.08_k5.14.21_150500.55.116-150500.3.73.7
SUSE Linux Enterprise Micro 5.5
nv-prefer-signed-open-driver-580.65.06-150500.3.73.7
nvidia-open-driver-G06-signed-cuda-kmp-default-580.65.06_k5.14.21_150500.55.116-150500.3.73.7
nvidia-open-driver-G06-signed-kmp-default-570.172.08_k5.14.21_150500.55.116-150500.3.73.7
SUSE Linux Enterprise Server 15 SP5-LTSS
nv-prefer-signed-open-driver-580.65.06-150500.3.73.7
nvidia-open-driver-G06-signed-64kb-devel-570.172.08-150500.3.73.7
nvidia-open-driver-G06-signed-cuda-64kb-devel-580.65.06-150500.3.73.7
nvidia-open-driver-G06-signed-cuda-default-devel-580.65.06-150500.3.73.7
nvidia-open-driver-G06-signed-cuda-kmp-64kb-580.65.06_k5.14.21_150500.55.116-150500.3.73.7
nvidia-open-driver-G06-signed-cuda-kmp-default-580.65.06_k5.14.21_150500.55.116-150500.3.73.7
nvidia-open-driver-G06-signed-default-devel-570.172.08-150500.3.73.7
nvidia-open-driver-G06-signed-kmp-64kb-570.172.08_k5.14.21_150500.55.116-150500.3.73.7
nvidia-open-driver-G06-signed-kmp-default-570.172.08_k5.14.21_150500.55.116-150500.3.73.7
SUSE Linux Enterprise Server for SAP Applications 15 SP5
nv-prefer-signed-open-driver-580.65.06-150500.3.73.7
nvidia-open-driver-G06-signed-cuda-default-devel-580.65.06-150500.3.73.7
nvidia-open-driver-G06-signed-cuda-kmp-default-580.65.06_k5.14.21_150500.55.116-150500.3.73.7
nvidia-open-driver-G06-signed-default-devel-570.172.08-150500.3.73.7
nvidia-open-driver-G06-signed-kmp-default-570.172.08_k5.14.21_150500.55.116-150500.3.73.7

Ссылки

Описание

NVIDIA Display Driver for Linux and Windows contains a vulnerability in the kernel mode driver, where an attacker could access memory outside bounds permitted under normal use cases. A successful exploit of this vulnerability might lead to denial of service, data tampering, or information disclosure.

Затронутые продукты
SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:nv-prefer-signed-open-driver-580.65.06-150500.3.73.7
SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:nvidia-open-driver-G06-signed-64kb-devel-570.172.08-150500.3.73.7
SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:nvidia-open-driver-G06-signed-cuda-64kb-devel-580.65.06-150500.3.73.7
SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:nvidia-open-driver-G06-signed-cuda-default-devel-580.65.06-150500.3.73.7
Ссылки

Описание

NVIDIA Display Driver for Windows and Linux contains a vulnerability where an attacker might cause an improper index validation by issuing a call with crafted parameters. A successful exploit of this vulnerability might lead to data tampering or denial of service.

Затронутые продукты
SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:nv-prefer-signed-open-driver-580.65.06-150500.3.73.7
SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:nvidia-open-driver-G06-signed-64kb-devel-570.172.08-150500.3.73.7
SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:nvidia-open-driver-G06-signed-cuda-64kb-devel-580.65.06-150500.3.73.7
SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:nvidia-open-driver-G06-signed-cuda-default-devel-580.65.06-150500.3.73.7
Ссылки

Описание

NVIDIA .run Installer for Linux and Solaris contains a vulnerability where an attacker could use a race condition to escalate privileges. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, information disclosure, denial of service, or data tampering.

Затронутые продукты
SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:nv-prefer-signed-open-driver-580.65.06-150500.3.73.7
SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:nvidia-open-driver-G06-signed-64kb-devel-570.172.08-150500.3.73.7
SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:nvidia-open-driver-G06-signed-cuda-64kb-devel-580.65.06-150500.3.73.7
SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:nvidia-open-driver-G06-signed-cuda-default-devel-580.65.06-150500.3.73.7
Ссылки

Описание

NVIDIA vGPU software for Linux-style hypervisors contains a vulnerability in the Virtual GPU Manager, where a malicious guest could cause stack buffer overflow. A successful exploit of this vulnerability might lead to code execution, denial of service, escalation of privileges, information disclosure, or data tampering.

Затронутые продукты
SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:nv-prefer-signed-open-driver-580.65.06-150500.3.73.7
SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:nvidia-open-driver-G06-signed-64kb-devel-570.172.08-150500.3.73.7
SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:nvidia-open-driver-G06-signed-cuda-64kb-devel-580.65.06-150500.3.73.7
SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:nvidia-open-driver-G06-signed-cuda-default-devel-580.65.06-150500.3.73.7
Ссылки

Описание

NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability where an attacker could read invalid memory. A successful exploit of this vulnerability might lead to information disclosure.

Затронутые продукты
SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:nv-prefer-signed-open-driver-580.65.06-150500.3.73.7
SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:nvidia-open-driver-G06-signed-64kb-devel-570.172.08-150500.3.73.7
SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:nvidia-open-driver-G06-signed-cuda-64kb-devel-580.65.06-150500.3.73.7
SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:nvidia-open-driver-G06-signed-cuda-default-devel-580.65.06-150500.3.73.7
Ссылки