Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

nvidia-graphics-drivers: CVE-2022-21813, CVE-2022-21814

Related Vulnerabilities: CVE-2022-21813   CVE-2022-21814   CVE‑2022‑21813   CVE‑2022‑21814  

Source

Debian Bug report logs - #1004847
nvidia-graphics-drivers: CVE-2022-21813, CVE-2022-21814

version graph

Package: src:nvidia-graphics-drivers; Maintainer for src:nvidia-graphics-drivers is Debian NVIDIA Maintainers <pkg-nvidia-devel@lists.alioth.debian.org>;

Reported by: Andreas Beckmann <anbe@debian.org>

Date: Wed, 2 Feb 2022 10:51:02 UTC

Severity: serious

Tags: security, upstream

Found in versions nvidia-graphics-drivers/495.44-1, nvidia-graphics-drivers/455.23.04-1, nvidia-graphics-drivers/430.14-1, nvidia-graphics-drivers/396.18-1, nvidia-graphics-drivers/465.24.02-1, nvidia-graphics-drivers/343.22-1, nvidia-graphics-drivers/450.51-1, nvidia-graphics-drivers/340.24-1

Reply or subscribe to this bug.

Toggle useless messages

View this report as an mbox folder, status mbox, maintainer mbox

Report forwarded to debian-bugs-dist@lists.debian.org, team@security.debian.org, Debian NVIDIA Maintainers <pkg-nvidia-devel@lists.alioth.debian.org>:
Bug#1004847; Package src:nvidia-graphics-drivers. (Wed, 02 Feb 2022 10:51:03 GMT) (full text, mbox, link).

Acknowledgement sent to Andreas Beckmann <anbe@debian.org>:
New Bug report received and forwarded. Copy sent to team@security.debian.org, Debian NVIDIA Maintainers <pkg-nvidia-devel@lists.alioth.debian.org>. (Wed, 02 Feb 2022 10:51:04 GMT) (full text, mbox, link).

Message #5 received at submit@bugs.debian.org (full text, mbox, reply):

From: Andreas Beckmann <anbe@debian.org>
To: Debian Bug Tracking System <submit@bugs.debian.org>
Subject: nvidia-graphics-drivers: CVE-2022-21813, CVE-2022-21814
Date: Wed, 02 Feb 2022 11:47:50 +0100
Source: nvidia-graphics-drivers
Severity: serious
Tags: security upstream
Control: clone -1 -2 -3 -4 -5 -6 -7
Control: reassign -2 src:nvidia-graphics-drivers-legacy-340xx 340.76-6
Control: retitle -2 nvidia-graphics-drivers-legacy-340xx: CVE-2022-21813, CVE-2022-21814
Control: tag -2 + wontfix
Control: reassign -3 src:nvidia-graphics-drivers-legacy-390xx 390.48-4
Control: retitle -3 nvidia-graphics-drivers-legacy-390xx: CVE-2022-21813, CVE-2022-21814
Control: reassign -4 src:nvidia-graphics-drivers-tesla-418 418.87.01-1
Control: retitle -4 nvidia-graphics-drivers-tesla-418: CVE-2022-21813, CVE-2022-21814
Control: reassign -5 src:nvidia-graphics-drivers-tesla-450 450.51.05-1
Control: retitle -5 nvidia-graphics-drivers-tesla-450: CVE-2022-21813, CVE-2022-21814
Control: reassign -6 src:nvidia-graphics-drivers-tesla-460 460.32.03-1
Control: retitle -6 nvidia-graphics-drivers-tesla-460: CVE-2022-21813, CVE-2022-21814
Control: reassign -7 src:nvidia-graphics-drivers-tesla-470 470.57.02-1
Control: retitle -7 nvidia-graphics-drivers-tesla-470: CVE-2022-21813, CVE-2022-21814
Control: found -1 340.24-1
Control: found -1 343.22-1
Control: found -1 396.18-1
Control: found -1 430.14-1
Control: found -1 450.51-1
Control: found -1 455.23.04-1
Control: found -1 465.24.02-1
Control: found -1 495.44-1

https://nvidia.custhelp.com/app/answers/detail/a_id/5312

CVE‑2022‑21813 	NVIDIA GPU Display Driver for Linux contains a
vulnerability in the kernel driver, where improper handling of
insufficient permissions or privileges may allow an unprivileged
local user limited write access to protected memory, which can
lead to denial of service.

CVE‑2022‑21814 	NVIDIA GPU Display Driver for Linux contains a
vulnerability in the kernel driver package, where improper
handling of insufficient permissions or privileges may allow an
unprivileged local user limited write access to protected memory,
which can lead to denial of service.

Driver Branch		CVE IDs Addressed
R510, R470		CVE-2022-21813, CVE-2022-21814

Andreas

Bug 1004847 cloned as bugs 1004848, 1004849, 1004850, 1004851, 1004852, 1004853 Request was from Andreas Beckmann <anbe@debian.org> to submit@bugs.debian.org. (Wed, 02 Feb 2022 10:51:04 GMT) (full text, mbox, link).

Marked as found in versions nvidia-graphics-drivers/340.24-1. Request was from Andreas Beckmann <anbe@debian.org> to submit@bugs.debian.org. (Wed, 02 Feb 2022 10:51:14 GMT) (full text, mbox, link).

Marked as found in versions nvidia-graphics-drivers/343.22-1. Request was from Andreas Beckmann <anbe@debian.org> to submit@bugs.debian.org. (Wed, 02 Feb 2022 10:51:15 GMT) (full text, mbox, link).

Marked as found in versions nvidia-graphics-drivers/396.18-1. Request was from Andreas Beckmann <anbe@debian.org> to submit@bugs.debian.org. (Wed, 02 Feb 2022 10:51:15 GMT) (full text, mbox, link).

Marked as found in versions nvidia-graphics-drivers/430.14-1. Request was from Andreas Beckmann <anbe@debian.org> to submit@bugs.debian.org. (Wed, 02 Feb 2022 10:51:16 GMT) (full text, mbox, link).

Marked as found in versions nvidia-graphics-drivers/450.51-1. Request was from Andreas Beckmann <anbe@debian.org> to submit@bugs.debian.org. (Wed, 02 Feb 2022 10:51:16 GMT) (full text, mbox, link).

Marked as found in versions nvidia-graphics-drivers/455.23.04-1. Request was from Andreas Beckmann <anbe@debian.org> to submit@bugs.debian.org. (Wed, 02 Feb 2022 10:51:16 GMT) (full text, mbox, link).

Marked as found in versions nvidia-graphics-drivers/465.24.02-1. Request was from Andreas Beckmann <anbe@debian.org> to submit@bugs.debian.org. (Wed, 02 Feb 2022 10:51:17 GMT) (full text, mbox, link).

Marked as found in versions nvidia-graphics-drivers/495.44-1. Request was from Andreas Beckmann <anbe@debian.org> to submit@bugs.debian.org. (Wed, 02 Feb 2022 10:51:17 GMT) (full text, mbox, link).

Send a report that this bug log contains spam.

Debian bug tracking system administrator <owner@bugs.debian.org>. Last modified: Wed Feb 2 12:09:04 2022; Machine Name: buxtehude

Debian Bug tracking system

Debbugs is free software and licensed under the terms of the GNU Public License version 2. The current version can be obtained from https://bugs.debian.org/debbugs-source/.

Copyright © 1999 Darren O. Benham, 1997,2003 nCipher Corporation Ltd, 1994-97 Ian Jackson, 2005-2017 Don Armstrong, and many other contributors.

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook

Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started