Ubuntu Update for nvidia-graphics-drivers USN-1799-1

Ubuntu Update for nvidia-graphics-drivers USN-1799-1. It was discovered that the NVIDIA graphics drivers incorrectly handled large ARGB cursors. A local attacker could use this issue to gain root privileges. The NVIDIA graphics drivers have been updated to 304.88 to fix this issue. In addition to the security fix, the updated packages contain bug fixes, new features, and possibly incompatible changes

Reporter	Title	Published	Views	Family All 20
FreeBSD	NVIDIA UNIX driver -- ARGB cursor buffer overflow in "NoScanout" mode	27 Mar 201300:00	–	freebsd
ATTACKERKB	CVE-2013-0131	8 Apr 201316:55	–	attackerkb
CVE	CVE-2013-0131	8 Apr 201316:00	–	cve
Cvelist	CVE-2013-0131	8 Apr 201316:00	–	cvelist
Debian CVE	CVE-2013-0131	8 Apr 201316:00	–	debiancve
EUVD	EUVD-2013-0174	7 Oct 202500:30	–	euvd
Tenable Nessus	FreeBSD : NVIDIA UNIX driver -- ARGB cursor buffer overflow in 'NoScanout' mode (1431f2d6-a06e-11e2-b9e0-001636d274f3)	12 Apr 201300:00	–	nessus
Tenable Nessus	GLSA-201304-01 : NVIDIA Drivers: Privilege escalation	9 Apr 201300:00	–	nessus
Tenable Nessus	Ubuntu 12.04 LTS / 12.10 : nvidia-graphics-drivers, nvidia-graphics-drivers-updates, nvidia-settings, nvidia-settings-updates vulnerability (USN-1799-1)	11 Apr 201300:00	–	nessus
Gentoo Linux	NVIDIA Drivers: Privilege escalation	8 Apr 201300:00	–	gentoo

Source	Link
ubuntu	www.ubuntu.com/usn/usn-1799-1/

###############################################################################
# OpenVAS Vulnerability Test
# $Id: gb_ubuntu_USN_1799_1.nasl 8526 2018-01-25 06:57:37Z teissa $
#
# Ubuntu Update for nvidia-graphics-drivers USN-1799-1
#
# Authors:
# System Generated Check
#
# Copyright:
# Copyright (c) 2013 Greenbone Networks GmbH, http://www.greenbone.net
#
# This program is free software; you can redistribute it and/or modify
# it under the terms of the GNU General Public License version 2
# (or any later version), as published by the Free Software Foundation.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program; if not, write to the Free Software
# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
###############################################################################

include("revisions-lib.inc");
tag_insight = "It was discovered that the NVIDIA graphics drivers incorrectly handled
  large ARGB cursors. A local attacker could use this issue to gain root
  privileges.

  The NVIDIA graphics drivers have been updated to 304.88 to fix this issue.
  In addition to the security fix, the updated packages contain bug fixes,
  new features, and possibly incompatible changes.";


tag_affected = "nvidia-graphics-drivers on Ubuntu 12.10 ,
  Ubuntu 12.04 LTS";
tag_solution = "Please Install the Updated Packages.";

if(description)
{
  script_id(841396);
  script_version("$Revision: 8526 $");
  script_tag(name:"last_modification", value:"$Date: 2018-01-25 07:57:37 +0100 (Thu, 25 Jan 2018) $");
  script_tag(name:"creation_date", value:"2013-04-15 10:20:44 +0530 (Mon, 15 Apr 2013)");
  script_cve_id("CVE-2013-0131");
  script_tag(name:"cvss_base", value:"7.1");
  script_tag(name:"cvss_base_vector", value:"AV:N/AC:H/Au:S/C:C/I:C/A:C");
  script_name("Ubuntu Update for nvidia-graphics-drivers USN-1799-1");

  script_xref(name: "USN", value: "1799-1");
  script_xref(name: "URL" , value: "http://www.ubuntu.com/usn/usn-1799-1/");
  script_tag(name: "summary" , value: "Check for the Version of nvidia-graphics-drivers");
  script_category(ACT_GATHER_INFO);
  script_copyright("Copyright (c) 2013 Greenbone Networks GmbH");
  script_family("Ubuntu Local Security Checks");
  script_dependencies("gather-package-list.nasl");
  script_mandatory_keys("ssh/login/ubuntu_linux", "ssh/login/packages");
  script_tag(name : "affected" , value : tag_affected);
  script_tag(name : "solution" , value : tag_solution);
  script_tag(name : "insight" , value : tag_insight);
  script_tag(name:"qod_type", value:"package");
  script_tag(name:"solution_type", value:"VendorFix");
  exit(0);
}


include("pkg-lib-deb.inc");

release = get_kb_item("ssh/login/release");

res = "";
if(release == NULL){
  exit(0);
}

if(release == "UBUNTU12.04 LTS")
{

  if ((res = isdpkgvuln(pkg:"nvidia-current", ver:"305.88-0ubuntu0.0.2", rls:"UBUNTU12.04 LTS")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"nvidia-current-updates", ver:"304.88-0ubuntu0.0.1", rls:"UBUNTU12.04 LTS")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"nvidia-settings", ver:"304.88-0ubuntu0.0.2", rls:"UBUNTU12.04 LTS")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"nvidia-settings-updates", ver:"304.88-0ubuntu0.0.2", rls:"UBUNTU12.04 LTS")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if (__pkg_match) exit(99); # Not vulnerable.
  exit(0);
}


if(release == "UBUNTU12.10")
{

  if ((res = isdpkgvuln(pkg:"nvidia-current", ver:"304.88-0ubuntu0.1", rls:"UBUNTU12.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"nvidia-current-updates", ver:"304.88-0ubuntu0.1", rls:"UBUNTU12.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"nvidia-settings", ver:"304.88-0ubuntu0.2", rls:"UBUNTU12.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"nvidia-settings-updates", ver:"304.88-0ubuntu0.2", rls:"UBUNTU12.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if (__pkg_match) exit(99); # Not vulnerable.
  exit(0);
}

25 Jan 2018 00:00Current

6.4Medium risk

Vulners AI Score6.4

EPSS0.05221