CVE-2016-7382

For the NVIDIA Quadro, NVS, GeForce, and Tesla products, NVIDIA GPU Display Driver contains a vulnerability in the kernel mode layer nvlddmkm.sys for Windows or nvidia.ko for Linux handler where a missing permissions check may allow users to gain access to arbitrary physical memory, leading to an...

Google Releases Supplemental Patch for Dirty Cow Vulnerability

Google’s November Android Security Bulletin, released Monday, patched 15 critical vulnerabilities and addressed 85 CVEs overall. But conspicuously absent is a fix for the Linux race condition vulnerability known as Dirty Cow Copy-on-Write that also impacts Android. While Google didn’t issue an...

NVIDIA Linux GPU Display Driver 304.x < 304.132 / 340.x < 340.98 / 361.93.x < 361.93.03 / 367.x < 367.55 / 370.x < 370.28 Multiple Vulnerabilities

The version of the NVIDIA GPU display driver installed on the remote Linux host is 304.x prior to 304.132, 340.x prior to 340.98, 361.93.x prior to 361.93.03, 367.x prior to 367.55, or 370.x prior to 370.28. It is, therefore, affected by multiple vulnerabilities : - A flaw exists in the kernel-mo...

NVIDIA Windows GPU Display Driver 340.x / 341.x / 342.x < 342.00 / 375.x < 375.63 Multiple Vulnerabilities

The version of the NVIDIA GPU display driver installed on the remote Windows host is 340.x, 341.x, or 342.x prior to 342.00, or 375.x prior to 375.63. It is, therefore, affected by multiple vulnerabilities : - An array-indexing error exists in nvlddmkm.sys due to improper validation of input. A...

NVIDIA Windows GPU Display Driver Local Information Disclosure Vulnerability

NVIDIA Windows GPU Display Driver is a set of graphics processor GPU graphics card drivers for Windows from NVIDIA. A local information disclosure vulnerability exists in NVIDIA Windows GPU Display Driver, which can be exploited by a local attacker to disclose kernel memory into user space with t...

NVIDIA Windows GPU Display Driver Local Elevation of Privilege Vulnerability (CNVD-2016-10576)

NVIDIA Windows GPU Display Driver is a set of graphics processor GPU graphics card drivers for Windows from NVIDIA. A local elevation of privilege vulnerability exists in NVIDIA Windows GPU Display Driver, which can be exploited by a local attacker to cause a denial of service or elevation of...

NVIDIA Windows GPU Display Driver Local Elevation of Privilege Vulnerability (CNVD-2016-10566)

NVIDIA Windows GPU Display Driver is a set of graphics processor GPU graphics card drivers for Windows from NVIDIA. A local elevation of privilege vulnerability exists in NVIDIA Windows GPU Display Driver, which arises from the program failing to properly validate values. A local attacker could...

NVIDIA Windows GPU Display Driver Local Elevation of Privilege Vulnerability (CNVD-2016-10569)

NVIDIA Windows GPU Display Driver is a set of graphics processor GPU graphics card drivers for Windows from NVIDIA. A local elevation of privilege vulnerability exists in NVIDIA Windows GPU Display Driver, which arises from the program failing to properly validate the size of the input buffer. A...

CVE-2016-6730

An elevation of privilege vulnerability in the NVIDIA GPU driver in Android before 2016-11-05 could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Critical due to the possibility of a local permanent device compromise, which...

CVE-2016-6734

An elevation of privilege vulnerability in the NVIDIA GPU driver in Android before 2016-11-05 could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Critical due to the possibility of a local permanent device compromise, which...

CVE-2016-6732

An elevation of privilege vulnerability in the NVIDIA GPU driver in Android before 2016-11-05 could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Critical due to the possibility of a local permanent device compromise, which...

NVIDIA Windows GPU Display Driver Local Elevation of Privilege Vulnerability

NVIDIA Windows GPU Display Driver is a set of graphics processor GPU graphics card drivers for Windows from NVIDIA. The NVIDIA Windows GPU Display Driver local elevation of privilege vulnerability stems from the program failing to properly validate pointers. A local attacker could use this...

NVIDIA Windows GPU Display Driver Local Elevation of Privilege Vulnerability (CNVD-2016-10534)

NVIDIA Windows GPU Display Driver is a set of graphics processor GPU graphics card drivers for Windows from NVIDIA. A local elevation of privilege vulnerability exists in NVIDIA Windows GPU Display Driver, which arises from the program failing to properly validate values. A local attacker could...

NVIDIA Windows GPU Display Driver Local Elevation of Privilege Vulnerability (CNVD-2016-10535)

NVIDIA NVIDIA Corporation, NASDAQ: NVDA, official Chinese name NVIDIA is a fabless IC semiconductor company that designs smart-core chipsets.The NVIDIA GPU Display Driver is a driver developed by the company for its GPUs. A local elevation of privilege vulnerability exists in NVIDIA GPU Display...

NVIDIA Windows GPU Display Driver Local Denial of Service Vulnerability

NVIDIA Windows GPU Display Driver is a set of graphics processor GPU graphics card drivers for Windows from NVIDIA. A local denial of service vulnerability exists in NVIDIA Windows GPU Display Driver, which arises from the program failing to properly validate values. A local attacker could exploi...

CVE-2016-6733

An elevation of privilege vulnerability in the NVIDIA GPU driver in Android before 2016-11-05 could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Critical due to the possibility of a local permanent device compromise, which...

Security Bulletin: NVIDIA Linux GPU Display Driver contains missing permissions check and improper validation vulnerabilities (CVE-2016-7382, CVE-2016-7389)

Vulnerability Details CVE-2016-7382 NVIDIA GPU Display Driver contains a vulnerability in the kernel mode layer nvidia.ko handler where a missing permissions check may allow users to gain access to arbitrary physical memory, leading to an escalation of privileges. CVSS Base Score: 6.8 CVSS Tempor...

Security Bulletin: Vulnerabilities in NVIDIA Windows GPU Display Driver and NVIDIA GeForce Experience

Vulnerability Details CVE-2016-8805 NVIDIA Windows GPU Display Driver contains a vulnerability in the kernel mode layer nvlddmkm.sys handler for DxgkDdiEscape ID 0x7000014 where a value passed from a user to the driver is used without validation as the index to an internal array, leading to denia...

Android NVIDIA GPU Driver Information Disclosure Vulnerability

Android on Nexus 9 is a Linux-based open source operating system for the Nexus 9 Tablet PC developed by Google and the Open Handset Alliance OHA, in which the NVIDIA GPU driver is used. A security vulnerability exists in the NVIDIA GPU driver in versions of Android prior to 2016-10-05 on Nexus 9...

Known Issues or Configuration Reasons: OpenGL/DirectX/GPU Acceleration Not Used

Browsers are often an integral part of the operating system and are aware that they are virtualized. As such we would recommend finding those issues within a browser and also test with a standalone benchmark application to verify if it is a configuration issue with GPU/OpenGL usage in general or...