NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel mode layer (nvidia.ko), where an integer overflow in index validation may lead to denial of service, information disclosure, or data tampering.
References
Link | Resource |
---|---|
https://nvidia.custhelp.com/app/answers/detail/a_id/5415 | Vendor Advisory |
https://security.gentoo.org/glsa/202310-02 | Third Party Advisory |
Configurations
Configuration 1 (hide)
AND |
|
Configuration 2 (hide)
AND |
|
Configuration 3 (hide)
AND |
|
History
19 Oct 2023, 01:24
Type | Values Removed | Values Added |
---|---|---|
References | (GENTOO) https://security.gentoo.org/glsa/202310-02 - Third Party Advisory |
03 Oct 2023, 15:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
06 Jan 2023, 21:48
Type | Values Removed | Values Added |
---|---|---|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 7.8 |
CWE | CWE-190 | |
CPE | cpe:2.3:o:redhat:enterprise_linux_kernel-based_virtual_machine:-:*:*:*:*:*:*:* cpe:2.3:o:vmware:vsphere:-:*:*:*:*:*:*:* cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:* cpe:2.3:a:nvidia:cloud_gaming:*:*:*:*:*:*:*:* cpe:2.3:o:citrix:hypervisor:-:*:*:*:*:*:*:* cpe:2.3:a:nvidia:virtual_gpu:*:*:*:*:*:*:*:* |
|
First Time |
Nvidia
Nvidia cloud Gaming Citrix hypervisor Redhat Citrix Linux Linux linux Kernel Vmware Nvidia virtual Gpu Vmware vsphere Redhat enterprise Linux Kernel-based Virtual Machine |
|
References | (MISC) https://nvidia.custhelp.com/app/answers/detail/a_id/5415 - Vendor Advisory |
30 Dec 2022, 23:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-12-30 23:15
Updated : 2023-12-10 14:48
NVD link : CVE-2022-42256
Mitre link : CVE-2022-42256
CVE.ORG link : CVE-2022-42256
JSON object : View
Products Affected
nvidia
- virtual_gpu
- cloud_gaming
vmware
- vsphere
linux
- linux_kernel
citrix
- hypervisor
redhat
- enterprise_linux_kernel-based_virtual_machine
CWE
CWE-190
Integer Overflow or Wraparound