NVIDIA Graphics Drivers for Linux GPU Device Node Access
NVIDIA Graphics Drivers for Linux GPU Device Node Access Privilege Escalation Vulnerability
Release Date : 2012-04-12
Criticality level : Less critical
Impact : Privilege escalation
Where : Local system
Solution Status : Vendor Patch
Software: NVIDIA Graphics Drivers for Linux
A vulnerability has been reported in NVIDIA Graphics Drivers for Linux, which can be exploited by malicious, local users to potentially gain escalated privileges.
The vulnerability is caused due to an error when handling read and write access to GPU (Graphics Processing Unit) device nodes, which can be exploited to reconfigure a GPU to read from or write to arbitrary system memory.
Successful exploitation requires read and write access to GPU device nodes (default configuration).
The vulnerability is reported in versions prior to 295.40.
Update to version 295.40 or apply patch.
Provided and/or discovered by:
Reported by the vendor.