Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
gentooGentoo FoundationGLSA-201402-02
HistoryFeb 02, 2014 - 12:00 a.m.

NVIDIA Drivers: Privilege Escalation

2014-02-0200:00:00
Gentoo Foundation
security.gentoo.org
18

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.003 Low

EPSS

Percentile

65.2%

JSON

Background

The NVIDIA drivers provide X11 and GLX support for NVIDIA graphic boards.

Description

The vulnerability is caused due to the driver allowing unprivileged user-mode software to access the GPU.

Impact

A local attacker could gain escalated privileges.

Workaround

There is no known workaround at this time.

Resolution

All NVIDIA Drivers users using the 331 branch should upgrade to the latest version:

 # emerge --sync
 # emerge --ask --oneshot --verbose
 ">=x11-drivers/nvidia-drivers-331.20"

All NVIDIA Drivers users using the 319 branch should upgrade to the latest version:

 # emerge --sync
 # emerge --ask --oneshot --verbose
 ">=x11-drivers/nvidia-drivers-319.76"

All NVIDIA Drivers users using the 304 branch should upgrade to the latest version:

 # emerge --sync
 # emerge --ask --oneshot --verbose
 ">=x11-drivers/nvidia-drivers-304.116"
OSVersionArchitecturePackageVersionFilename
Gentooanyallx11-drivers/nvidia-drivers< 331.20UNKNOWN

Related

prion 2
cvelist 2
nvd 2
nessus 5
debiancve 2
redhatcve 2
cve 2
openvas 2
ubuntucve 2
securityvulns 4
ibm 1
prion
prion
Security feature bypass
2014-01-21 18:55:00
Design/Logic Flaw
2014-01-21 18:55:00
cvelist
cvelist
CVE-2013-5986
2014-01-21 18:00:00
CVE-2013-5987
2014-01-21 18:00:00
nvd
nvd
CVE-2013-5986
2014-01-21 18:55:09
CVE-2013-5987
2014-01-21 18:55:09
nessus
nessus
GLSA-201402-02 : NVIDIA Drivers: Privilege Escalation
2014-02-03 00:00:00
NVIDIA Graphics Driver Unspecified Privilege Escalation (Unix / Linux)
2014-02-13 00:00:00
NVIDIA Graphics Driver Unspecified Privilege Escalation (Windows)
2014-02-13 00:00:00
debiancve
debiancve
CVE-2013-5986
2014-01-21 18:55:09
CVE-2013-5987
2014-01-21 18:55:09
redhatcve
redhatcve
CVE-2013-5986
2015-10-30 09:53:29
CVE-2013-5987
2015-10-30 10:33:37
cve
cve
CVE-2013-5986
2014-01-21 18:55:09
CVE-2013-5987
2014-01-21 18:55:09
openvas
openvas
Gentoo Security Advisory GLSA 201402-02
2015-09-29 00:00:00
Apple Mac OS X Multiple Vulnerabilities -04 (Sep 2014)
2014-09-22 00:00:00
ubuntucve
ubuntucve
CVE-2013-5986
2014-01-21 00:00:00
CVE-2013-5987
2014-01-21 00:00:00
securityvulns
securityvulns
NVidia drivers privilege escalation
2014-05-10 00:00:00
[security bulletin] HPSBHF02946 rev.1 - HP Servers with NVIDIA GPU Computing Driver, Elevation of Privilege
2014-05-10 00:00:00
APPLE-SA-2014-02-25-1 OS X Mavericks 10.9.2 and Security Update 2014-001
2014-02-28 00:00:00
ibm
ibm
Security Bulletin: Unprivileged GPU access vulnerability - CVE-2013-5987
2023-04-20 02:28:14

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.003 Low

EPSS

Percentile

65.2%

JSON
Related for GLSA-201402-02
prion2cvelist2nvd2nessus5debiancve2redhatcve2cve2openvas2ubuntucve2securityvulns4ibm1