1. Computers
  2. Display Drivers
  3. Graphics Cards
  4. Memory
  5. Motherboards
  6. Processors
  7. Software
  8. Storage
  9. Operating Systems


Facebook RSS Twitter Twitter Google Plus


Phoronix Test Suite

OpenBenchmarking.org

NVIDIA Has New Driver Update To Fix Security Flaw

NVIDIA

Published on 03 April 2013 01:04 AM EDT
Written by Fatima Sheremetyeva in NVIDIA
1 Comment

NVIDIA released the 313.30 Linux graphics driver on Tuesday night to take care of a security vulnerability.

Similar to past special-case releases to address security vulnerabilities with NVIDIA's binary blob, the 313.30 driver release officially just contains one security-related fix:
Fixed CVE-2013-0131: NVIDIA UNIX GPU Driver ARGB Cursor Buffer Overflow in "NoScanout" Mode. This buffer overflow, which occurred when an X client installed a large ARGB cursor on an X server running in NoScanout mode, could cause a denial of service (e.g., an X server segmentation fault), or could be exploited to achieve arbitrary code execution.
Details on this important NVIDIA driver security bug, which also hit FreeBSD and Solaris OS users, can be found in their customer portal. The good news is that this only affects those using the NoScanOut mode.

This security vulnerability that could take advantage of the X.Org Server generally running as the root user has affected NVIDIA users for a long while -- since the 195.22 driver days, or more easily known as late 2009. This is the first high-profile NVIDIA security driver bug in a few months, but last year they had some issues covered by Michael's NVIDIA Fixes Linux GPU Driver Security Hole and NVIDIA 295.40 Closes High-Risk Security Flaw.

This latest NVIDIA Linux graphics driver can be fetched from NVIDIA.com and is classified as a "certified" Linux GPU driver release.

Latest Linux Hardware Reviews
  1. Scythe Mugen MAX
  2. Intel Core i7 5960X Haswell-E On Linux
  3. Intel 80GB 530 Series M.2 SSD On Linux
  4. With A New Motherboard, The Core i7 5960X Haswell-E Lights Up
Latest Linux Articles
  1. 7-Way Linux Desktop Gaming Comparison On Ubuntu 14.10
  2. Intel P-State vs. CPUFreq Benchmarks On The i7-5960X
  3. RadeonSI GLAMOR Benchmarks With X.Org Server 1.16
  4. RadeonSI Gallium3D vs. Catalyst At 4K UHD On Linux
Latest Linux News
  1. Mesa Gets Closer To Having OpenGL 4.0 Tessellation Support
  2. Uselessd: A Stripped Down Version Of Systemd
  3. F2FS Tools Gain FSCK Support
  4. FreeBSD 10.1 Has The New VT Driver, Hardware Improvements
  5. AntiMicro 2.6 Yields Greater Compatibility For Gamepads On Linux
  6. OpenGL 3.3 / GLSL 3.30 Lands For Intel Sandy Bridge On Mesa
  7. AMD's RadeonSI Gallium3D Driver Sees Some Improvements
  8. Mesa 10.3 Released With The Latest Open-Source GPU Driver Improvements
  9. GNOME 3.13.92 Officially Released
  10. Wine 1.7.27 Is Still Working Towards Direct2D Support
Latest Forum Discussions
  1. Can Linux kill a motherboard?
  2. Wasteland 2 Officially Launched Today, Including For Linux Gamers
  3. X.Org Women Outreach Program Only Turns Up Two Applicants So Far
  4. New stress testing utility for GPU's
  5. Stop grabbing my keyboard :(
  6. New Group Calls For Boycotting Systemd
  7. SSD seems slow
  8. R. Tyler restarts work on FreeBSD launchd port, openlaunchd