CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:P/A:P
EPSS
Percentile
26.0%
Issue Overview:
The NVIDIA UNIX driver before 295.40 allows local users to access arbitrary memory locations by leveraging GPU device-node read/write privileges.
Affected Packages:
nvidia
Issue Correction:
Run yum update nvidia to update your system.
New Packages:
src:
nvidia-295.40.3.2.12-1.1.amzn1.src
x86_64:
nvidia-295.40.3.2.12-1.1.amzn1.x86_64
nvidia-kmod-295.40.3.2.12-1.1.amzn1.x86_64
nvidia-kmod-3.2.12-3.2.4.amzn1-295.40-1.1.amzn1.x86_64
Red Hat: CVE-2012-0946
Mitre: CVE-2012-0946
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Amazon Linux | 1 | x86_64 | nvidia | < 295.40.3.2.12-1.1.amzn1 | nvidia-295.40.3.2.12-1.1.amzn1.x86_64.rpm |
Amazon Linux | 1 | x86_64 | nvidia-kmod | < 295.40.3.2.12-1.1.amzn1 | nvidia-kmod-295.40.3.2.12-1.1.amzn1.x86_64.rpm |
Amazon Linux | 1 | x86_64 | nvidia-kmod-3.2.12-3.2.4.amzn1 | < 295.40-1.1.amzn1 | nvidia-kmod-3.2.12-3.2.4.amzn1-295.40-1.1.amzn1.x86_64.rpm |