Lucene search
Ubuntu.comUB:CVE-2012-0946HistoryApr 11, 2012 - 12:00 a.m.
CVE-2012-0946
2012-04-1100:00:00
ubuntu.com
ubuntu.com
14
4.6 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:P/A:P
0.001 Low
EPSS
Percentile
24.9%
The NVIDIA UNIX driver before 295.40 allows local users to access arbitrary
memory locations by leveraging GPU device-node read/write privileges.
Bugs
Notes
| Author | Note |
|---|---|
| mdeslaur | driver 96 is for older cards which aren’t vulnerable to the issue |
| jdstrand | -173 is currently not installable or usable on 12.04 LTS. Nvidia is planning a driver update for this series, which will include the fix for this issue tseliot is working on the updates for 12.04 LTS |
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| ubuntu | 10.04 | noarch | nvidia-graphics-drivers | < 195.36.24-0ubuntu1~10.04.2 | UNKNOWN |
| ubuntu | 11.04 | noarch | nvidia-graphics-drivers | < 270.41.06-0ubuntu1.1 | UNKNOWN |
| ubuntu | 11.10 | noarch | nvidia-graphics-drivers | < 280.13-0ubuntu6.1 | UNKNOWN |
| ubuntu | 10.04 | noarch | nvidia-graphics-drivers-173 | < 173.14.22-0ubuntu11.1 | UNKNOWN |
| ubuntu | 11.04 | noarch | nvidia-graphics-drivers-173 | < 173.14.30-0ubuntu1.1 | UNKNOWN |
| ubuntu | 11.10 | noarch | nvidia-graphics-drivers-173 | < 173.14.30-0ubuntu8.1 | UNKNOWN |
| ubuntu | 11.10 | noarch | nvidia-graphics-drivers-173-updates | < 173.14.30-0ubuntu5.1 | UNKNOWN |
| ubuntu | 11.10 | noarch | nvidia-graphics-drivers-updates | < 280.13-0ubuntu5.1 | UNKNOWN |
Related
openvas
openvas
Gentoo Security Advisory GLSA 201206-19 (nvidia-drivers)
2012-08-10 00:00:00
Amazon Linux: Security Advisory (ALAS-2012-67)
2015-09-08 00:00:00
Ubuntu: Security Advisory (USN-1420-1)
2012-04-13 00:00:00
debiancve
debiancve
CVE-2012-0946
2012-04-22 18:55:00
nessus
nessus
GLSA-201206-19 : NVIDIA Drivers: Privilege escalation
2012-06-25 00:00:00
Amazon Linux AMI : nvidia (ALAS-2012-67)
2013-09-04 00:00:00
prion
prion
Design/Logic Flaw
2012-04-22 18:55:00
securityvulns
securityvulns
NVidia Linux / Unix drivers privilege escalation
2012-04-26 00:00:00
cve
cve
CVE-2012-0946
2012-04-22 18:55:00
gentoo
gentoo
NVIDIA Drivers: Privilege escalation
2012-06-23 00:00:00
ubuntu
ubuntu
NVIDIA graphics drivers vulnerability
2012-04-11 00:00:00
amazon
amazon
Medium: nvidia
2012-04-30 14:47:00
freebsd
freebsd
NVIDIA UNIX driver -- access to arbitrary system memory
2012-03-20 00:00:00
4.6 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:P/A:P
0.001 Low
EPSS
Percentile
24.9%
Related for UB:CVE-2012-0946