1. Computers
  2. Display Drivers
  3. Graphics Cards
  4. Memory
  5. Motherboards
  6. Processors
  7. Software
  8. Storage
  9. Operating Systems


Facebook RSS Twitter Twitter Google Plus


Phoronix Test Suite

OpenBenchmarking.org

NVIDIA Driver Security Exploit

NVIDIA

Published on 17 October 2006 01:00 AM EDT
Written by Michael Larabel in NVIDIA
Comment On This Article

While this security vulnerability has been known since 2004, Rapid7 had issued a report yesterday on the buffer overflow problem in NVIDIA's binary Linux display drivers -- the issue also likely lies in the FreeBSD and Solaris drivers. This issue allows attackers to run code as root either locally or remotely. A working proof of concept is also available from Rapid7. The solution presented in this report is to remove the closed-source NVIDIA module and use the 2D NV module. NVIDIA has, however, stated that this problem has been fixed with the 1.0-9XXX series drivers. Disabling RenderAccel will also resolve this problem on the vulnerable drivers. There is also news on this NVIDIA Linux driver issue at KernelTrap. A thread has been setup on the Phoronix Forums to discuss this problem.

About The Author
Michael Larabel is the principal author of Phoronix.com and founded the web-site in 2004 with a focus on enriching the Linux hardware experience and being the largest web-site devoted to Linux hardware reviews, particularly for products relevant to Linux gamers and enthusiasts but also commonly reviewing servers/workstations and embedded Linux devices. Michael has written more than 10,000 articles covering the state of Linux hardware support, Linux performance, graphics hardware drivers, and other topics. Michael is also the lead developer of the Phoronix Test Suite, Phoromatic, and OpenBenchmarking.org automated testing software. He can be followed via and or contacted via .
Latest Articles & Reviews
  1. Samsung 850 EVO SSD Linux Benchmarks
  2. Kubuntu 15.04 Is Turning Out Quite Nice, Good Way To Try Out The Latest KDE
  3. 5-Way Linux Distribution Comparison On The Core i3 NUC
  4. OCZ ARC 100 Linux SSD Benchmarks
  5. Lenovo ThinkPad X1 Carbon Works Great As A Linux Ultrabook
  6. Transcend SSD370 256GB
Latest Linux News
  1. 8cc: A Small C11 Compiler
  2. Not Everyone Likes The Possible "VULKAN" Name For Next-Gen OpenGL
  3. The Binary Blobs Making Up Coreboot
  4. Linux 4.0 & LLVM vs. GCC Yielded Much Interest This Month
  5. XBMC/Kodi 15.0 Alpha 1 Released
  6. Xfce 4.12 Released After Nearly Three Years Of Work
  7. The Khronos Group Filed A Trademark On "Vulkan" API
  8. Mozilla Thunderbird Adoption Climbs, Thunderbird 38 In May
  9. The Most Popular Linux Benchmark Results On OpenBenchmarking.org
  10. Intel's Graphics Driver For Linux 4.1 Will Have More XenGT vGPU Support
Most Viewed News This Week
  1. Linux 4.0-RC1 Tagged, Linux 4.0 Will Bring Many Notable Improvements
  2. Screenshots Of The GNOME 3.16 Changes
  3. More Proof That Allwinner Is Violating The GPL
  4. The Tremendous Features Of Fedora 22
  5. Linux 4.0 Doesn't Have The Weirdest Codename
  6. Krita 2.9 Released, Their Biggest Release Ever
  7. A Single UEFI Executable With The Linux Kernel, Initrd & Command Line
  8. Canonical Comes Up With Its Own FUSE Filesystem For Linux Containers
%%CLICK_URL_UNESC%%