Buffer overflow in the NVIDIA GPU driver before 304.88, 310.x before
310.44, and 313.x before 313.30 for the X Window System on UNIX, when
NoScanout mode is enabled, allows remote authenticated users to execute
arbitrary code via a large ARGB cursor.
Bugs
Notes
Author |
Note |
mdeslaur |
upstream advisory says vulnerability is present since 195.22 fixed in 304.88, 310.44, 313.30 We aren’t going to fix the experimental drivers. Users of the experimental drivers for who this issue is important are recommended to switch to production drivers. Doesn’t actually affected nvidia-settings and nvidia-settings-updates. Updates are simply required for compatibility reasons. |
jdstrand |
no updates from NVIDIA for 195.36 (Ubuntu 10.04 LTS), 280.13 and 295.20 (Ubuntu 11.10) as of 2013-04-19 |