CVE-2025-33235

NVIDIA Resiliency Extension for Linux contains a vulnerability in the checkpointing core, where an attacker may cause a race condition. A successful exploit of this vulnerability might lead to information disclosure, data tampering, denial of service, or escalation of privileges...

megatron-bridge (>=0.1.0rc0 <=0.3.1), nemo-eval (>=0.1.0rc1 <=0.2.0rc0) +1 more potentially affected by CVE-2025-33225 via nvidia-resiliency-ext (>=0.3.0 <=0.4.1)

nvidia-resiliency-ext PYPI version =0.3.0, =0.1.0rc0, =0.1.0rc1, =0.1.0, =0.4.0 Source cves: CVE-2025-33225 Source advisory: SNYK:PYTHON-NVIDIARESILIENCYEXT-14459109...

UNIX Symbolic Link (Symlink) Following

Overview nvidia-resiliency-ext is a NVIDIA Resiliency Package Affected versions of this package are vulnerable to UNIX Symbolic Link Symlink Following via the log aggregation. An attacker can gain elevated privileges, execute arbitrary code, cause service disruption, access sensitive information,...

nemo-eval (>=0.1.0rc1 <=0.1.0rc2), nemo-export-deploy (>=0.1.0 <=0.2.0rc1) potentially affected by CVE-2025-33235 via nvidia-resiliency-ext (=0.3.0)

nvidia-resiliency-ext PYPI version =0.3.0 is affected by a known vulnerability. The following packages have a transitive dependency on nvidia-resiliency-ext and may be impacted: - nemo-eval =0.1.0rc1, =0.1.0, =0.2.0rc1 Source cves: CVE-2025-33235 Source advisory:...

Race Condition

Overview nvidia-resiliency-ext is a NVIDIA Resiliency Package Affected versions of this package are vulnerable to Race Condition in the checkpointing core. An attacker can gain unauthorized access to sensitive information, modify data, disrupt service availability, or escalate privileges by...

EUVD-2025-203812

NVIDIA Resiliency Extension for Linux contains a vulnerability in the checkpointing core, where an attacker may cause a race condition. A successful exploit of this vulnerability might lead to information disclosure, data tampering, denial of service, or escalation of privileges...

CVE-2025-33225

NVIDIA Resiliency Extension for Linux contains a vulnerability in log aggregation, where an attacker could cause predictable log-file names. A successful exploit of this vulnerability may lead to escalation of privileges, code execution, denial of service, information disclosure, and data tamperi...

CVE-2025-33235

NVIDIA Resiliency Extension for Linux contains a vulnerability in the checkpointing core, where an attacker may cause a race condition. A successful exploit of this vulnerability might lead to information disclosure, data tampering, denial of service, or escalation of privileges...

CVE-2025-33235

NVIDIA Resiliency Extension for Linux is affected by a race condition in the checkpointing core that may allow information disclosure, data tampering, denial of service, or privilege escalation. The vulnerability is documented across multiple feeds (NVD/Red Hat/NVIDIA bulletin) and is associated ...

CVE-2025-33225

NVIDIA Resiliency Extension for Linux contains a vulnerability in log aggregation, where an attacker could cause predictable log-file names. A successful exploit of this vulnerability may lead to escalation of privileges, code execution, denial of service, information disclosure, and data tamperi...

NVIDIA Resiliency Extension 安全漏洞

NVIDIA Resiliency Extension is a Python package from NVIDIA. A security vulnerability exists in NVIDIA Resiliency Extension that originates from predictable log file names in log aggregation and could lead to elevation of privilege, code execution, denial of service, information disclosure, and...

Security Bulletin: NVIDIA Resiliency Extension - December 2025

NVIDIA has released a software update for NVIDIA® Resiliency Extension. To protect your system, clone or update this software to version 0.5.0 or later from NVIDIA Resiliency Extension on GitHub. Go to NVIDIA Product Security...

PT-2025-51762

Name of the Vulnerable Software and Affected Versions NVIDIA Resiliency Extension for Linux affected versions not specified Description The NVIDIA Resiliency Extension for Linux has an issue in its checkpointing core that allows an attacker to create a race condition. Exploitation could result in...

NVIDIA Resiliency Extension 竞争条件问题漏洞

NVIDIA Resiliency Extension is a Python package from NVIDIA. NVIDIA Resiliency Extension suffers from a Competitive Condition Issue vulnerability that stems from the presence of a competitive condition in the checkpoint kernel, which could lead to information disclosure, data tampering, denial of...