oss-sec mailing list archives
Re: CVE Request: NVidia Linux driver
From: Petr Matousek <pmatouse () redhat com>
Date: Wed, 1 Aug 2012 15:13:46 +0200
Hi Marc, On Wed, Aug 01, 2012 at 08:58:16AM -0400, Marc Deslauriers wrote:
Hello, Could a CVE please be assigned to the following issue: The binary NVidia Linux driver allows local users to access arbitrary memory locations by leveraging GPU device-node read/write privileges, and escalate privileges to root. Possibly an incomplete fix for CVE-2012-0946. See: http://seclists.org/fulldisclosure/2012/Aug/4
did you test that the exploit works on NVIDIA driver that should contain the CVE-2012-0946 fix? Thanks, -- Petr Matousek / Red Hat Security Response Team
Current thread:
- CVE Request: NVidia Linux driver Marc Deslauriers (Aug 01)
- Re: CVE Request: NVidia Linux driver Petr Matousek (Aug 01)
- Re: CVE Request: NVidia Linux driver Marc Deslauriers (Aug 01)
- Re: CVE Request: NVidia Linux driver Tavis Ormandy (Aug 01)
- Re: Re: CVE Request: NVidia Linux driver Marc Deslauriers (Aug 01)
- Re: Re: CVE Request: NVidia Linux driver Marcus Meissner (Aug 01)
- Re: Re: CVE Request: NVidia Linux driver Tavis Ormandy (Aug 01)
- Re: Re: CVE Request: NVidia Linux driver Marc Deslauriers (Aug 01)
- Re: CVE Request: NVidia Linux driver Petr Matousek (Aug 01)
- Re: CVE Request: NVidia Linux driver Kurt Seifried (Aug 01)
- Re: CVE Request: NVidia Linux driver Marc Deslauriers (Aug 01)
- Re: CVE Request: NVidia Linux driver cve-assign (Aug 08)
- Re: CVE Request: NVidia Linux driver Marc Deslauriers (Aug 01)