{"id":"MGASA-2022-0285","summary":"Updated nvidia-current packages fix security vulnerabilities","details":"Updated nvidia-current packages fix security vulnerabilities:\n\nNVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel\nmode layer (nvidia.ko), where a local user with basic capabilities can cause\nimproper input validation, which may lead to denial of service, escalation\nof privileges, data tampering, and limited information disclosure\n(CVE‑2022‑31607).\n\nNVIDIA GPU Display Driver for Linux contains a vulnerability in an optional\nD-Bus configuration file, where a local user with basic capabilities can\nimpact protected D-Bus endpoints, which may lead to code execution, denial\nof service, escalation of privileges, information disclosure, and data\ntampering (CVE‑2022‑31608).\n\nNVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel\nmode layer, where a local user with basic capabilities can cause a null-\npointer dereference, which may lead to denial of service (CVE‑2022‑31615).\n\nNVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel\nmode layer, where a local user with basic capabilities can cause a null-\npointer dereference, which may lead to denial of service (CVE‑2022‑34665).\n\nNVIDIA GPU Display Driver for Windows and Linux contains a vulnerability\nin the kernel mode layer, where a local user with basic capabilities can\ncause a null-pointer dereference, which may lead to denial of service\n(CVE‑2022‑34666).\n","modified":"2026-04-16T04:43:11.540410298Z","published":"2022-08-18T18:45:48Z","upstream":["CVE-2022-31607","CVE-2022-31608","CVE-2022-31615","CVE-2022-34665","CVE-2022-34666"],"references":[{"type":"ADVISORY","url":"https://advisories.mageia.org/MGASA-2022-0285.html"},{"type":"REPORT","url":"https://bugs.mageia.org/show_bug.cgi?id=30722"},{"type":"WEB","url":"https://nvidia.custhelp.com/app/answers/detail/a_id/5383"}],"affected":[{"package":{"name":"ldetect-lst","ecosystem":"Mageia:8","purl":"pkg:rpm/mageia/ldetect-lst?arch=source&distro=mageia-8"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0.6.26.13-1.mga8"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2022-0285.json"}},{"package":{"name":"nvidia-current","ecosystem":"Mageia:8","purl":"pkg:rpm/mageia/nvidia-current?arch=source&distro=mageia-8"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"470.141.03-1.mga8.nonfree"}]}],"ecosystem_specific":{"section":"nonfree"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2022-0285.json"}}],"schema_version":"1.7.5","credits":[{"name":"Mageia","contact":["https://wiki.mageia.org/en/Packages_Security_Team"],"type":"COORDINATOR"}]}