Lucene search
UbuntuUSN-2747-1HistorySep 28, 2015 - 12:00 a.m.
NVIDIA graphics drivers vulnerability
2015-09-2800:00:00
ubuntu.com
146
CVSS2
6.9
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:C/I:C/A:C
AI Score
6.3
Confidence
Low
EPSS
0
Percentile
5.1%
Releases
- Ubuntu 15.04
- Ubuntu 14.04 ESM
- Ubuntu 12.04
Packages
- jockey - user interface and desktop integration for driver management
- nvidia-graphics-drivers-304 - NVIDIA binary X.Org driver
- nvidia-graphics-drivers-304-updates - NVIDIA binary X.Org driver
- nvidia-graphics-drivers-340 - NVIDIA binary X.Org driver
- nvidia-graphics-drivers-340-updates - NVIDIA binary X.Org driver
- nvidia-graphics-drivers-346 - NVIDIA binary X.Org driver
- nvidia-graphics-drivers-346-updates - NVIDIA binary X.Org driver
Details
Dario Weisser discovered that the NVIDIA graphics drivers incorrectly
handled certain IOCTL writes. A local attacker could use this issue to
possibly gain root privileges.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Ubuntu | 15.04 | noarch | nvidia-304 | < 304.128-0ubuntu0.1 | UNKNOWN |
| Ubuntu | 15.04 | noarch | libcuda1-304 | < 304.128-0ubuntu0.1 | UNKNOWN |
| Ubuntu | 15.04 | noarch | nvidia-304-dev | < 304.128-0ubuntu0.1 | UNKNOWN |
| Ubuntu | 15.04 | noarch | nvidia-current | < 304.128-0ubuntu0.1 | UNKNOWN |
| Ubuntu | 15.04 | noarch | nvidia-current-dev | < 304.128-0ubuntu0.1 | UNKNOWN |
| Ubuntu | 15.04 | noarch | nvidia-libopencl1-304 | < 304.128-0ubuntu0.1 | UNKNOWN |
| Ubuntu | 15.04 | noarch | nvidia-opencl-icd-304 | < 304.128-0ubuntu0.1 | UNKNOWN |
| Ubuntu | 15.04 | noarch | nvidia-304-updates | < 304.128-0ubuntu0.1 | UNKNOWN |
| Ubuntu | 15.04 | noarch | nvidia-340 | < 340.93-0ubuntu0.1 | UNKNOWN |
| Ubuntu | 15.04 | noarch | libcuda1-331 | < 340.93-0ubuntu0.1 | UNKNOWN |
References
Related
openvas
openvas
Mageia: Security Advisory (MGASA-2015-0407)
2015-10-26 00:00:00
Ubuntu: Security Advisory (USN-2747-1)
2015-09-29 00:00:00
prion
prion
Memory corruption
2015-09-30 01:59:00
debiancve
debiancve
CVE-2015-5950
2015-09-30 01:59:17
hp
hp
securityvulns
securityvulns
[USN-2747-1] NVIDIA graphics drivers vulnerability
2015-10-12 00:00:00
NVidia graphics drivers privilege escalation
2015-10-12 00:00:00
nvd
nvd
CVE-2015-5950
2015-09-30 01:59:17
nessus
nessus
Ubuntu 14.04 LTS : NVIDIA graphics drivers vulnerability (USN-2747-1)
2015-09-29 00:00:00
mageia
mageia
Updated nvidia driver packages fix security vulnerability
2015-10-25 17:38:05
cvelist
cvelist
CVE-2015-5950
2015-09-29 00:00:00
ubuntucve
ubuntucve
CVE-2015-5950
2015-09-25 00:00:00
cve
cve
CVE-2015-5950
2015-09-30 01:59:17
lenovo
lenovo
Memory corruption due to an unsanitized pointer in the NVIDIA display driver
2016-08-14 00:00:00
CVSS2
6.9
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:C/I:C/A:C
AI Score
6.3
Confidence
Low
EPSS
0
Percentile
5.1%
Related for USN-2747-1