{"id":"MGASA-2022-0286","summary":"Updated nvidia390 packages fix security vulnerabilities","details":"Updated nvidia390 packages fix security vulnerabilities:\n\nNVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel\nmode layer (nvidia.ko), where a local user with basic capabilities can cause\nimproper input validation, which may lead to denial of service, escalation\nof privileges, data tampering, and limited information disclosure\n(CVE‑2022‑31607).\n\nNVIDIA GPU Display Driver for Linux contains a vulnerability in an optional\nD-Bus configuration file, where a local user with basic capabilities can\nimpact protected D-Bus endpoints, which may lead to code execution, denial\nof service, escalation of privileges, information disclosure, and data\ntampering (CVE‑2022‑31608).\n\nNVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel\nmode layer, where a local user with basic capabilities can cause a null-\npointer dereference, which may lead to denial of service (CVE‑2022‑31615).\n\nNVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel\nmode layer, where a local user with basic capabilities can cause a null-\npointer dereference, which may lead to denial of service (CVE‑2022‑34665).\n\nNVIDIA GPU Display Driver for Windows and Linux contains a vulnerability\nin the kernel mode layer, where a local user with basic capabilities can\ncause a null-pointer dereference, which may lead to denial of service\n(CVE‑2022‑34666).\n","modified":"2026-04-16T04:44:01.597210154Z","published":"2022-08-18T18:45:48Z","upstream":["CVE-2022-31607","CVE-2022-31608","CVE-2022-31615","CVE-2022-34665","CVE-2022-34666"],"references":[{"type":"ADVISORY","url":"https://advisories.mageia.org/MGASA-2022-0286.html"},{"type":"REPORT","url":"https://bugs.mageia.org/show_bug.cgi?id=30723"},{"type":"WEB","url":"https://nvidia.custhelp.com/app/answers/detail/a_id/5383"}],"affected":[{"package":{"name":"nvidia390","ecosystem":"Mageia:8","purl":"pkg:rpm/mageia/nvidia390?arch=source&distro=mageia-8"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"390.154-1.mga8.nonfree"}]}],"ecosystem_specific":{"section":"nonfree"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2022-0286.json"}}],"schema_version":"1.7.5","credits":[{"name":"Mageia","contact":["https://wiki.mageia.org/en/Packages_Security_Team"],"type":"COORDINATOR"}]}