NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel mode layer handler, where an unprivileged regular user can cause truncation errors when casting a primitive to a primitive of smaller size causes data to be lost in the conversion, which may lead to denial of service or information disclosure.
References
Link | Resource |
---|---|
https://lists.debian.org/debian-lts-announce/2023/05/msg00010.html | Mailing List |
https://nvidia.custhelp.com/app/answers/detail/a_id/5415 | Vendor Advisory |
https://security.gentoo.org/glsa/202310-02 | Third Party Advisory |
Configurations
Configuration 1 (hide)
AND |
|
Configuration 2 (hide)
AND |
|
Configuration 3 (hide)
AND |
|
Configuration 4 (hide)
AND |
|
Configuration 5 (hide)
AND |
|
Configuration 6 (hide)
|
History
15 Oct 2023, 02:06
Type | Values Removed | Values Added |
---|---|---|
First Time |
Debian debian Linux
Debian |
|
CPE | cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:* | |
References | (GENTOO) https://security.gentoo.org/glsa/202310-02 - Third Party Advisory | |
References | (MLIST) https://lists.debian.org/debian-lts-announce/2023/05/msg00010.html - Mailing List |
03 Oct 2023, 15:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
11 May 2023, 18:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
11 Jan 2023, 20:14
Type | Values Removed | Values Added |
---|---|---|
CWE | CWE-681 | |
References | (MISC) https://nvidia.custhelp.com/app/answers/detail/a_id/5415 - Vendor Advisory | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 7.8 |
First Time |
Citrix hypervisor
Nvidia rtx Linux linux Kernel Vmware Nvidia virtual Gpu Vmware vsphere Nvidia geforce Nvidia cloud Gaming Nvidia Redhat Citrix Linux Nvidia nvs Nvidia quadro Nvidia tesla Nvidia gpu Display Driver Redhat enterprise Linux Kernel-based Virtual Machine |
|
CPE | cpe:2.3:o:redhat:enterprise_linux_kernel-based_virtual_machine:-:*:*:*:*:*:*:* cpe:2.3:a:nvidia:tesla:-:*:*:*:*:*:*:* cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:* cpe:2.3:a:nvidia:gpu_display_driver:*:*:*:*:*:linux:*:* cpe:2.3:o:citrix:hypervisor:-:*:*:*:*:*:*:* cpe:2.3:a:nvidia:virtual_gpu:*:*:*:*:*:*:*:* cpe:2.3:a:nvidia:nvs:-:*:*:*:*:*:*:* cpe:2.3:o:vmware:vsphere:-:*:*:*:*:*:*:* cpe:2.3:a:nvidia:geforce:-:*:*:*:*:*:*:* cpe:2.3:a:nvidia:quadro:-:*:*:*:*:*:*:* cpe:2.3:a:nvidia:rtx:-:*:*:*:*:*:*:* cpe:2.3:a:nvidia:cloud_gaming:*:*:*:*:*:*:*:* |
30 Dec 2022, 23:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-12-30 23:15
Updated : 2023-12-10 14:48
NVD link : CVE-2022-34670
Mitre link : CVE-2022-34670
CVE.ORG link : CVE-2022-34670
JSON object : View
Products Affected
nvidia
- cloud_gaming
- tesla
- gpu_display_driver
- nvs
- geforce
- quadro
- rtx
- virtual_gpu
linux
- linux_kernel
redhat
- enterprise_linux_kernel-based_virtual_machine
vmware
- vsphere
debian
- debian_linux
citrix
- hypervisor