Lucene search
Ubuntu.comUB:CVE-2013-0131HistoryApr 03, 2013 - 12:00 a.m.
CVE-2013-0131
2013-04-0300:00:00
ubuntu.com
ubuntu.com
10
0.008 Low
EPSS
Percentile
81.5%
Buffer overflow in the NVIDIA GPU driver before 304.88, 310.x before
310.44, and 313.x before 313.30 for the X Window System on UNIX, when
NoScanout mode is enabled, allows remote authenticated users to execute
arbitrary code via a large ARGB cursor.
Bugs
Notes
| Author | Note |
|---|---|
| mdeslaur | upstream advisory says vulnerability is present since 195.22 fixed in 304.88, 310.44, 313.30 We aren’t going to fix the experimental drivers. Users of the experimental drivers for who this issue is important are recommended to switch to production drivers. Doesn’t actually affected nvidia-settings and nvidia-settings-updates. Updates are simply required for compatibility reasons. |
| jdstrand | no updates from NVIDIA for 195.36 (Ubuntu 10.04 LTS), 280.13 and 295.20 (Ubuntu 11.10) as of 2013-04-19 |
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| ubuntu | 12.04 | noarch | nvidia-graphics-drivers | < 304.88-0ubuntu0.0.2 | UNKNOWN |
| ubuntu | 12.10 | noarch | nvidia-graphics-drivers | < 304.88-0ubuntu0.1 | UNKNOWN |
| ubuntu | 13.04 | noarch | nvidia-graphics-drivers-304 | < 304.88-0ubuntu1 | UNKNOWN |
| ubuntu | 13.04 | noarch | nvidia-graphics-drivers-304-updates | < 304.88-0ubuntu1 | UNKNOWN |
| ubuntu | 13.04 | noarch | nvidia-graphics-drivers-310 | < 310.44-0ubuntu1 | UNKNOWN |
| ubuntu | 13.04 | noarch | nvidia-graphics-drivers-310-updates | < 310.44-0ubuntu1 | UNKNOWN |
| ubuntu | 13.04 | noarch | nvidia-graphics-drivers-313-updates | < 313.30-0ubuntu1 | UNKNOWN |
| ubuntu | 12.04 | noarch | nvidia-graphics-drivers-updates | < 304.88-0ubuntu0.0.1 | UNKNOWN |
| ubuntu | 12.10 | noarch | nvidia-graphics-drivers-updates | < 304.88-0ubuntu0.1 | UNKNOWN |
Related
securityvulns
securityvulns
[USN-1799-1] NVIDIA graphics drivers vulnerability
2013-04-15 00:00:00
Linux kernel multiple security vulnerabilities
2013-04-15 00:00:00
debiancve
debiancve
CVE-2013-0131
2013-04-08 16:55:00
nessus
nessus
FreeBSD : NVIDIA UNIX driver -- ARGB cursor buffer overflow in 'NoScanout' mode (1431f2d6-a06e-11e2-b9e0-001636d274f3)
2013-04-12 00:00:00
Ubuntu 12.04 LTS / 12.10 : nvidia-graphics-drivers, nvidia-graphics-drivers-updates, nvidia-settings, nvidia-settings-updates vulnerability (USN-1799-1)
2013-04-11 00:00:00
GLSA-201304-01 : NVIDIA Drivers: Privilege escalation
2013-04-09 00:00:00
openvas
openvas
Ubuntu Update for nvidia-graphics-drivers USN-1799-1
2013-04-15 00:00:00
Ubuntu: Security Advisory (USN-1799-1)
2013-04-15 00:00:00
Gentoo Security Advisory GLSA 201304-01
2015-09-29 00:00:00
cvelist
cvelist
CVE-2013-0131
2013-04-08 16:00:00
cve
cve
CVE-2013-0131
2013-04-08 16:55:00
ubuntu
ubuntu
NVIDIA graphics drivers vulnerability
2013-04-10 00:00:00
prion
prion
Buffer overflow
2013-04-08 16:55:00
freebsd
freebsd
NVIDIA UNIX driver -- ARGB cursor buffer overflow in "NoScanout" mode
2013-03-27 00:00:00
cert
cert
NVIDIA UNIX GPU driver ARGB cursor buffer overflow in "NoScanout" mode
2013-04-05 00:00:00
gentoo
gentoo
NVIDIA Drivers: Privilege escalation
2013-04-08 00:00:00