CVE-2015-7869

Multiple integer overflows in the kernel mode driver for the NVIDIA GPU graphics driver R340 before 341.92, R352 before 354.35, and R358 before 358.87 on Windows and R304 before 304.131, R340 before 340.96, R352 before 352.63, and R358 before 358.16 on Linux allow local users to obtain sensitive...

CVE-2015-5053

CVE-2015-5053 affects NVIDIA GPU graphics drivers (Linux) R346 before 346.87 and R352 before 352.41, and GRID vGPU/vSGA with R352 before 352.46. The host memory mapping path feature fails to properly restrict access to third‑party device IO memory, enabling a local attacker to gain privileges and...

CVE-2015-7866

CVE-2015-7866 describes an unquoted Windows search path vulnerability in the NVIDIA GPU graphics driver control panel component nvSmartMaxApp.exe. A local attacker could exploit this to escalate privileges, demonstrated by using a Trojan horse named C:\Program.exe. The affected products are NVIDI...

CVE-2015-7869

CVE-2015-7869 refers to multiple integer overflows in the NVIDIA GPU graphics driver kernel mode components. Affected are Windows drivers R340 (<341.92), R352 (<354.35), R358 (<358.87) and Linux drivers R304 (<304.131), R340 (<340.96), R352 (<352.63), R358 (

CVE-2015-7869

Multiple integer overflows in the kernel mode driver for the NVIDIA GPU graphics driver R340 before 341.92, R352 before 354.35, and R358 before 358.87 on Windows and R304 before 304.131, R340 before 340.96, R352 before 352.63, and R358 before 358.16 on Linux allow local users to obtain sensitive...

CVE-2015-5053

The host memory mapping path feature in the NVIDIA GPU graphics driver R346 before 346.87 and R352 before 352.41 for Linux and R352 before 352.46 for GRID vGPU and vSGA does not properly restrict access to third-party device IO memory, which allows attackers to gain privileges, cause a denial of...

CVE-2015-5053

The host memory mapping path feature in the NVIDIA GPU graphics driver R346 before 346.87 and R352 before 352.41 for Linux and R352 before 352.46 for GRID vGPU and vSGA does not properly restrict access to third-party device IO memory, which allows attackers to gain privileges, cause a denial of...

CVE-2015-8328

Unspecified vulnerability in the NVAPI support layer in the NVIDIA GPU graphics driver R340 before 341.92, R352 before 354.35, and R358 before 358.87 on Windows allows local users to obtain sensitive information, cause a denial of service crash, or possibly gain privileges via unknown vectors...

CVE-2015-7865

CVE-2015-7865 details a local privilege escalation in NVIDIA graphics drivers for Windows prior to: R340<341.92, R352<354.35, and R358

CVE-2015-8328

Unspecified vulnerability in the NVAPI support layer in the NVIDIA GPU graphics driver R340 before 341.92, R352 before 354.35, and R358 before 358.87 on Windows allows local users to obtain sensitive information, cause a denial of service crash, or possibly gain privileges via unknown vectors...

CVE-2015-7865

nvSCPAPISvr.exe in the Stereoscopic 3D Driver Service in the NVIDIA GPU graphics driver R340 before 341.92, R352 before 354.35, and R358 before 358.87 on Windows does not properly restrict access to the stereosvrpipe named pipe, which allows local users to gain privileges via a commandline in a...

CVE-2015-7866

Unquoted Windows search path vulnerability in the Smart Maximize Helper nvSmartMaxApp.exe in the Control Panel in the NVIDIA GPU graphics driver R340 before 341.92, R352 before 354.35, and R358 before 358.87 on Windows allows local users to gain privileges via a Trojan horse application, as...

CVE-2015-7869

Multiple integer overflows in the kernel mode driver for the NVIDIA GPU graphics driver R340 before 341.92, R352 before 354.35, and R358 before 358.87 on Windows and R304 before 304.131, R340 before 340.96, R352 before 352.63, and R358 before 358.16 on Linux allow local users to obtain sensitive...

Security Advisory - DoS Vulnerability in GPU Driver of Huawei Products

Some Huawei products have a DoS vulnerability. An attacker may trick a user into installing a malicious application and use it to input invalid parameters into the GPU driver program of the products, which can crash the system of the device. Vulnerability ID: HWPSIRT-2015-09017 This vulnerability...

Security Advisory - Local Permission Escalation Vulnerability in GPU of P7 Phones

The graphics processing unit GPU of Huawei P7 phones have a local permission escalation vulnerability.GPU does not properly validate the specific input parameters. An attacker may trick a user into installing a malicious application and use the application to read and modify product memory addres...

[SECURITY] Fedora 21 Update: libvdpau-1.1.1-2.fc21

VDPAU is the Video Decode and Presentation API for UNIX. It provides an interface to video decode acceleration and presentation hardware present in modern GPUs...

Fedora 23 : qemu-2.4.0-1.fc23 (2015-13358)

Rebased to version 2.4.0 Support for virtio-gpu, 2D only Support for virtio-based keyboard/mouse/tablet emulation x86 support for memory hot-unplug - ACPI v5.1 table support for 'virt' board CVE-2015-3209: pcnet: multi-tmd buffer overflow in the tx path bz 1230536 CVE-2015-3214: i8254: out-of-...

The vulnerability of Google Chrome browser allows a perpetrator to trigger a service failure.

The vulnerability in the implementation of the GPU process for Google Chrome’s browser /browser/gpu/browsergpuchannelhostfactory.cc, content/renderer/renderthreadimpl.cc is related to the use of memory after it is freed. Exploiting this vulnerability could allow an attacker, operating remotely, t...

kernel security, bug fix, and enhancement update

2.6.32-573 - security selinux: dont waste ebitmap space when importing NetLabel categories Paul Moore 1130197 - x86 Revert Add driver auto probing for x86 features v4 Prarit Bhargava 1231280 - net bridge: netfilter: dont call iptables on vlan packets if sysctl is off Florian Westphal 1236551 - ne...

chromium-browser: Use-after-free related to unexpected GPU process termination in unspecified

Use-after-free vulnerability in the GPU process implementation in Google Chrome before 44.0.2403.89 allows remote attackers to cause a denial of service or possibly have unspecified other impact by leveraging the continued availability of a GPUChannelHost data structure during Blink shutdown,...