CVE-2016-7384

For the NVIDIA Quadro, NVS, and GeForce products, NVIDIA Windows GPU Display Driver R340 before 342.00 and R375 before 375.63 contains a vulnerability in the kernel mode layer nvlddmkm.sys where unchecked input/output lengths in UVMLiteController Device IO Control handling may lead to denial of...

CVE-2016-8807

CVE-2016-8807 affects the NVIDIA Windows GPU Display Driver (nvlddmkm.sys) in the kernel-mode layer. The issue occurs in the DxgDdiEscape handler for ID 0x10000e9, where a user-supplied size is used as the input size to memcpy, causing a stack-based buffer overflow. This can lead to denial of ser...

CVE-2016-7390

CVE-2016-7390 affects NVIDIA Windows GPU Display Driver (nvlddmkm.sys) for Quadro/NVS/GeForce. The kernel-mode DxgDdiEscape handler for ID 0x7000194 uses a user-supplied value as an index into an internal array without validation, enabling denial of service or potential privilege escalation. Affe...

CVE-2016-7384

The CVE-2016-7384 entry concerns NVIDIA Windows GPU Display Driver kernels nvlddmkm.sys in Quadro/NVS/GeForce on Windows, with affected driver branches R340 before 342.00 and R375 before 375.63. The vulnerability stems from unchecked input/output lengths in the UVMLiteController Device IO Control...

CVE-2016-7382

For the NVIDIA Quadro, NVS, GeForce, and Tesla products, NVIDIA GPU Display Driver contains a vulnerability in the kernel mode layer nvlddmkm.sys for Windows or nvidia.ko for Linux handler where a missing permissions check may allow users to gain access to arbitrary physical memory, leading to an...

CVE-2016-7385

CVE-2016-7385 affects NVIDIA Windows GPU Display Driver nvlddmkm.sys in the kernel-mode DxgDdiEscape handler (ID 0x700010d). A user-supplied value is used as an index into an internal array without validation, enabling denial of service or possible privilege escalation. Affected driver versions: ...

Google Releases Supplemental Patch for Dirty Cow Vulnerability

Google’s November Android Security Bulletin, released Monday, patched 15 critical vulnerabilities and addressed 85 CVEs overall. But conspicuously absent is a fix for the Linux race condition vulnerability known as Dirty Cow Copy-on-Write that also impacts Android. While Google didn’t issue an...

NVIDIA Linux GPU Display Driver 304.x < 304.132 / 340.x < 340.98 / 361.93.x < 361.93.03 / 367.x < 367.55 / 370.x < 370.28 Multiple Vulnerabilities

The version of the NVIDIA GPU display driver installed on the remote Linux host is 304.x prior to 304.132, 340.x prior to 340.98, 361.93.x prior to 361.93.03, 367.x prior to 367.55, or 370.x prior to 370.28. It is, therefore, affected by multiple vulnerabilities : - A flaw exists in the kernel-mo...

NVIDIA Windows GPU Display Driver 340.x / 341.x / 342.x < 342.00 / 375.x < 375.63 Multiple Vulnerabilities

The version of the NVIDIA GPU display driver installed on the remote Windows host is 340.x, 341.x, or 342.x prior to 342.00, or 375.x prior to 375.63. It is, therefore, affected by multiple vulnerabilities : - An array-indexing error exists in nvlddmkm.sys due to improper validation of input. A...

NVIDIA Windows GPU Display Driver Local Elevation of Privilege Vulnerability (CNVD-2016-10576)

NVIDIA Windows GPU Display Driver is a set of graphics processor GPU graphics card drivers for Windows from NVIDIA. A local elevation of privilege vulnerability exists in NVIDIA Windows GPU Display Driver, which can be exploited by a local attacker to cause a denial of service or elevation of...

NVIDIA Windows GPU Display Driver Local Information Disclosure Vulnerability

NVIDIA Windows GPU Display Driver is a set of graphics processor GPU graphics card drivers for Windows from NVIDIA. A local information disclosure vulnerability exists in NVIDIA Windows GPU Display Driver, which can be exploited by a local attacker to disclose kernel memory into user space with t...

NVIDIA Windows GPU Display Driver Local Elevation of Privilege Vulnerability (CNVD-2016-10569)

NVIDIA Windows GPU Display Driver is a set of graphics processor GPU graphics card drivers for Windows from NVIDIA. A local elevation of privilege vulnerability exists in NVIDIA Windows GPU Display Driver, which arises from the program failing to properly validate the size of the input buffer. A...

NVIDIA Windows GPU Display Driver Local Elevation of Privilege Vulnerability (CNVD-2016-10566)

NVIDIA Windows GPU Display Driver is a set of graphics processor GPU graphics card drivers for Windows from NVIDIA. A local elevation of privilege vulnerability exists in NVIDIA Windows GPU Display Driver, which arises from the program failing to properly validate values. A local attacker could...

NVIDIA Windows GPU Display Driver Local Elevation of Privilege Vulnerability

NVIDIA Windows GPU Display Driver is a set of graphics processor GPU graphics card drivers for Windows from NVIDIA. The NVIDIA Windows GPU Display Driver local elevation of privilege vulnerability stems from the program failing to properly validate pointers. A local attacker could use this...

NVIDIA Windows GPU Display Driver Local Elevation of Privilege Vulnerability (CNVD-2016-10535)

NVIDIA NVIDIA Corporation, NASDAQ: NVDA, official Chinese name NVIDIA is a fabless IC semiconductor company that designs smart-core chipsets.The NVIDIA GPU Display Driver is a driver developed by the company for its GPUs. A local elevation of privilege vulnerability exists in NVIDIA GPU Display...

CVE-2016-6730

An elevation of privilege vulnerability in the NVIDIA GPU driver in Android before 2016-11-05 could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Critical due to the possibility of a local permanent device compromise, which...

CVE-2016-6734

An elevation of privilege vulnerability in the NVIDIA GPU driver in Android before 2016-11-05 could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Critical due to the possibility of a local permanent device compromise, which...

NVIDIA Windows GPU Display Driver Local Elevation of Privilege Vulnerability (CNVD-2016-10534)

NVIDIA Windows GPU Display Driver is a set of graphics processor GPU graphics card drivers for Windows from NVIDIA. A local elevation of privilege vulnerability exists in NVIDIA Windows GPU Display Driver, which arises from the program failing to properly validate values. A local attacker could...

NVIDIA Windows GPU Display Driver Local Denial of Service Vulnerability

NVIDIA Windows GPU Display Driver is a set of graphics processor GPU graphics card drivers for Windows from NVIDIA. A local denial of service vulnerability exists in NVIDIA Windows GPU Display Driver, which arises from the program failing to properly validate values. A local attacker could exploi...

CVE-2016-6733

An elevation of privilege vulnerability in the NVIDIA GPU driver in Android before 2016-11-05 could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Critical due to the possibility of a local permanent device compromise, which...