update: nvidia-drivers #1097

dongsupark · 2023-06-27T08:23:16Z

Name: nvidia-drivers
CVEs: CVE-2023-25515, CVE-2023-25516
CVSSs: 7.6, 7.1
Action Needed: update to >= 525.125.06

Summary:

CVE-2023-25515: NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability where unexpected untrusted data is parsed, which may lead to code execution, denial of service, escalation of privileges, data tampering, or information disclosure.
CVE-2023-25516: NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel mode layer, where an unprivileged user can cause an integer overflow, which may lead to information disclosure and denial of service.

refmap.gentoo: https://bugs.gentoo.org/909226

sayanchowdhury · 2023-09-08T04:51:04Z

dongsupark · 2023-09-19T12:19:45Z

dongsupark added security security concerns advisory security advisory labels Jun 27, 2023

dongsupark added this to Flatcar tactical, release planning, and roadmap Jun 27, 2023

github-project-automation bot moved this to 📝 Needs Triage in Flatcar tactical, release planning, and roadmap Jun 27, 2023

dongsupark moved this from 📝 Needs Triage to 🪵Backlog in Flatcar tactical, release planning, and roadmap Jun 27, 2023

dongsupark moved this from 🪵Backlog to 🌱 Upcoming / Focus in Flatcar tactical, release planning, and roadmap Jul 3, 2023

tormath1 added the cvss/HIGH > 7 && < 9 assessed CVSS label Jul 4, 2023

dongsupark moved this from 🌱 Upcoming / Focus to ⚒️ In Progress in Flatcar tactical, release planning, and roadmap Sep 8, 2023

dongsupark closed this as completed Sep 19, 2023

github-project-automation bot moved this from ⚒️ In Progress to Implemented in Flatcar tactical, release planning, and roadmap Sep 19, 2023

github-actions bot mentioned this issue Nov 9, 2023

Monthly contributions report 2023-08-22 - 2023-09-21 #1245

Closed

dongsupark removed this from Flatcar tactical, release planning, and roadmap Jan 16, 2024

Provide feedback