CVE-2021-1056

NVIDIA GPU Display Driver for Linux, all versions, contains a vulnerability in the kernel mode layer (nvidia.ko) in which it does not completely honor operating system file system permissions to provide GPU device-level isolation, which may lead to denial of service or information disclosure.
Configurations

Configuration 1 (hide)

AND
OR cpe:2.3:a:nvidia:gpu_driver:*:*:*:*:*:*:*:*
cpe:2.3:a:nvidia:gpu_driver:*:*:*:*:*:*:*:*
cpe:2.3:a:nvidia:gpu_driver:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*

Configuration 2 (hide)

cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*

History

13 Oct 2023, 01:34

Type Values Removed Values Added
References (GENTOO) https://security.gentoo.org/glsa/202310-02 - (GENTOO) https://security.gentoo.org/glsa/202310-02 - Third Party Advisory

03 Oct 2023, 15:15

Type Values Removed Values Added
References
  • (GENTOO) https://security.gentoo.org/glsa/202310-02 -

29 Mar 2022, 18:05

Type Values Removed Values Added
CPE cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
References (MLIST) https://lists.debian.org/debian-lts-announce/2022/01/msg00013.html - (MLIST) https://lists.debian.org/debian-lts-announce/2022/01/msg00013.html - Mailing List, Third Party Advisory
First Time Debian
Debian debian Linux

18 Jan 2022, 23:15

Type Values Removed Values Added
References
  • (MLIST) https://lists.debian.org/debian-lts-announce/2022/01/msg00013.html -

14 Jan 2021, 21:20

Type Values Removed Values Added
CVSS v2 : unknown
v3 : unknown
v2 : 3.6
v3 : 7.1
CPE cpe:2.3:a:nvidia:gpu_driver:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*
CWE CWE-276
References (CONFIRM) https://nvidia.custhelp.com/app/answers/detail/a_id/5142 - (CONFIRM) https://nvidia.custhelp.com/app/answers/detail/a_id/5142 - Vendor Advisory

08 Jan 2021, 01:15

Type Values Removed Values Added
New CVE

Information

Published : 2021-01-08 01:15

Updated : 2023-12-10 13:41


NVD link : CVE-2021-1056

Mitre link : CVE-2021-1056

CVE.ORG link : CVE-2021-1056


JSON object : View

Products Affected

linux

  • linux_kernel

nvidia

  • gpu_driver

debian

  • debian_linux
CWE
CWE-276

Incorrect Default Permissions