701 matches found
CVE-2019-5672
NVIDIA Jetson TX1 and TX2 contain a vulnerability in the Linux for Tegra L4T operating system on all versions prior to R28.3 where the Secure Shell SSH keys provided in the sample rootfs are not replaced by unique host keys after sample rootsfs generation and flashing, which may lead to informati...
Nvidia Fixes 8 High-Severity Flaws Allowing DoS, Code Execution
Nvidia has released fixes for eight high-severity vulnerabilities in its Linux for Tegra driver packages. The worst of these flaws could allow information disclosure, denial of service and code execution on impacted systems. Overall, the chipmaker on Tuesday released patches for 13 flaws that...
Design/Logic Flaw
NVIDIA Tegra library contains a vulnerability in libnvmmlitevideo.so, where referencing memory after it has been freed may lead to denial of service or possible escalation of privileges. Android ID: A-80433161...
CVE-2018-6271
NVIDIA Tegra OpenMax driver libnvomx contains a vulnerability in which the software delivers extra data with the buffer and does not properly validated the extra data, which may lead to denial of service or escalation of privileges. Android ID: A-80198474...
Design/Logic Flaw
NVIDIA Tegra OpenMax driver libnvomx contains a vulnerability in which the software delivers extra data with the buffer and does not properly validated the extra data, which may lead to denial of service or escalation of privileges. Android ID: A-80198474...
Design/Logic Flaw
NVIDIA Tegra OpenMax driver libnvomx contains a vulnerability in which the software does not validate or incorrectly validates input that can affect the control flow or data flow of a program, which may lead to denial of service or escalation of privileges. Android ID: A-70857947...
CVE-2018-6268
NVIDIA Tegra library contains a vulnerability in libnvmmlitevideo.so, where referencing memory after it has been freed may lead to denial of service or possible escalation of privileges. Android ID: A-80433161...
CVE-2018-6267
NVIDIA Tegra OpenMax driver libnvomx contains a vulnerability in which the software does not validate or incorrectly validates input that can affect the control flow or data flow of a program, which may lead to denial of service or escalation of privileges. Android ID: A-70857947...
CVE-2018-6267
NVIDIA Tegra OpenMax driver libnvomx contains a vulnerability in which the software does not validate or incorrectly validates input that can affect the control flow or data flow of a program, which may lead to denial of service or escalation of privileges. Android ID: A-70857947...
CVE-2018-6271
NVIDIA Tegra OpenMax driver libnvomx contains a vulnerability in which the software delivers extra data with the buffer and does not properly validated the extra data, which may lead to denial of service or escalation of privileges. Android ID: A-80198474...
CVE-2018-6268
NVIDIA Tegra library contains a vulnerability in libnvmmlitevideo.so, where referencing memory after it has been freed may lead to denial of service or possible escalation of privileges. Android ID: A-80433161...
CVE-2018-6268
CVE-2018-6268 affects NVIDIA Tegra libnvmmlite_video.so, where a use-after-free can cause DoS or privilege escalation. Connected NVIDIA bulletins tie this to Jetson TX1/TX2 Linux for Tegra (L4T) and list R28.3 as the updated release to address multiple related flaws, including 2018-6268. Affected...
CVE-2018-6267
CVE-2018-6267 affects NVIDIA’s Tegra OpenMax driver (libnvomx): a missing/incorrect validation of input can affect control or data flow, potentially enabling DoS or elevation of privilege. Public NVIDIA bulletins confirm this CVE is addressed as part of Jetson TX1/TX2 L4T updates; remediation inv...
CVE-2018-6271
CVE-2018-6271 affects NVIDIA Tegra OpenMax driver (libnvomx). The issue arises from delivering extra data with buffers and inadequate validation, enabling potential denial of service or escalation of privileges. Affected products are Jetson TX1/TX2 running Linux for Tegra; NVIDIA lists CVE-2018-6...
CVE-2018-6271
NVIDIA Tegra OpenMax driver libnvomx contains a vulnerability in which the software delivers extra data with the buffer and does not properly validated the extra data, which may lead to denial of service or escalation of privileges. Android ID: A-80198474...
Input validation
NVIDIA Tegra Gralloc module contains a vulnerability in driver in which it does not validate input parameter of the registerbuffer API, which may lead to arbitrary code execution, denial of service, or escalation of privileges. Android ID: A-62540032 Severity Rating: High Version: N/A...
CVE-2018-6241
NVIDIA Tegra Gralloc module contains a vulnerability in driver in which it does not validate input parameter of the registerbuffer API, which may lead to arbitrary code execution, denial of service, or escalation of privileges. Android ID: A-62540032 Severity Rating: High Version: N/A...
CVE-2018-6241
NVIDIA Tegra Gralloc module contains a vulnerability in driver in which it does not validate input parameter of the registerbuffer API, which may lead to arbitrary code execution, denial of service, or escalation of privileges. Android ID: A-62540032 Severity Rating: High Version: N/A...
CVE-2018-6241
The CVE-2018-6241 issue affects the NVIDIA Tegra Gralloc module in the driver, where missing input validation in the registerbuffer API could allow arbitrary code execution, denial of service, or privilege escalation. The NVIDIA SHIELD TV security bulletin lists this CVE as high severity (base sc...
Security Bulletin: NVIDIA SHIELD TV – October 2018
NVIDIA has released a software security update for SHIELD TV. This update addresses issues that may lead to information disclosure or escalation of privileges. To protect your system, download and install this software update. Go to NVIDIA Product Security. Details This section summarizes the...