NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel mode layer (nvidia.ko), where an integer overflow may lead to information disclosure, data tampering or denial of service.
References
Link | Resource |
---|---|
https://lists.debian.org/debian-lts-announce/2023/05/msg00010.html | Mailing List |
https://nvidia.custhelp.com/app/answers/detail/a_id/5415 | Vendor Advisory |
https://security.gentoo.org/glsa/202310-02 | Third Party Advisory |
Configurations
Configuration 1 (hide)
AND |
|
Configuration 2 (hide)
AND |
|
Configuration 3 (hide)
AND |
|
Configuration 4 (hide)
AND |
|
Configuration 5 (hide)
AND |
|
Configuration 6 (hide)
|
History
19 Oct 2023, 01:34
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:* | |
First Time |
Debian debian Linux
Debian |
|
References | (GENTOO) https://security.gentoo.org/glsa/202310-02 - Third Party Advisory | |
References | (MLIST) https://lists.debian.org/debian-lts-announce/2023/05/msg00010.html - Mailing List |
03 Oct 2023, 15:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
11 May 2023, 18:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
05 Jan 2023, 22:37
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:o:redhat:enterprise_linux_kernel-based_virtual_machine:-:*:*:*:*:*:*:* cpe:2.3:a:nvidia:tesla:-:*:*:*:*:*:*:* cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:* cpe:2.3:a:nvidia:gpu_display_driver:*:*:*:*:*:linux:*:* cpe:2.3:o:citrix:hypervisor:-:*:*:*:*:*:*:* cpe:2.3:a:nvidia:virtual_gpu:*:*:*:*:*:*:*:* cpe:2.3:a:nvidia:nvs:-:*:*:*:*:*:*:* cpe:2.3:o:vmware:vsphere:-:*:*:*:*:*:*:* cpe:2.3:a:nvidia:geforce:-:*:*:*:*:*:*:* cpe:2.3:a:nvidia:quadro:-:*:*:*:*:*:*:* cpe:2.3:a:nvidia:rtx:-:*:*:*:*:*:*:* cpe:2.3:a:nvidia:cloud_gaming:*:*:*:*:*:*:*:* |
|
CWE | CWE-190 | |
References | (MISC) https://nvidia.custhelp.com/app/answers/detail/a_id/5415 - Vendor Advisory | |
First Time |
Citrix hypervisor
Nvidia rtx Linux linux Kernel Vmware Nvidia virtual Gpu Vmware vsphere Nvidia geforce Nvidia cloud Gaming Nvidia Redhat Citrix Linux Nvidia nvs Nvidia quadro Nvidia tesla Nvidia gpu Display Driver Redhat enterprise Linux Kernel-based Virtual Machine |
|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 7.3 |
30 Dec 2022, 23:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-12-30 23:15
Updated : 2023-12-10 14:48
NVD link : CVE-2022-42257
Mitre link : CVE-2022-42257
CVE.ORG link : CVE-2022-42257
JSON object : View
Products Affected
nvidia
- cloud_gaming
- tesla
- gpu_display_driver
- nvs
- geforce
- quadro
- rtx
- virtual_gpu
redhat
- enterprise_linux_kernel-based_virtual_machine
linux
- linux_kernel
vmware
- vsphere
debian
- debian_linux
citrix
- hypervisor
CWE
CWE-190
Integer Overflow or Wraparound