Buffer Overflow in NVIDIA Binary Graphics Driver For Linux
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
linux-restricted-modules-2.6.15 (Ubuntu) |
New
|
Undecided
|
Unassigned | ||
linux-restricted-modules-2.6.17 (Ubuntu) |
New
|
Undecided
|
Unassigned |
Bug Description
Binary package hint: nvidia-glx
I didn't find any report on this on Malone, so here we go. This applies to both Dapper and Edgy.
Summary from http://
"KNOWN VULNERABLE:
- NVIDIA Driver For Linux v8774
- NVIDIA Driver For Linux v8762
The NVIDIA Binary Graphics Driver for Linux is vulnerable to a buffer overflow that allows an attacker to run arbitrary code as root. This bug can be exploited both locally or remotely (via a remote X client or an X client which visits a malicious web page)."
An updated driver that fixes the reported issue was released from NVIDIA, see
http://
Updated, but inoffical packages for both Dapper and Edgy are available from Alberto Milone, see
http://
Since this is a severe security issue, can we expect official Ubuntu security fixes for nvidia-glx and the related linux-restricte
Big-Ooops, this has been the 10th duplicate of Bug#46034, with one of the other duplicates using exactly the same topic. Honestly, I didn't notice that when browsing for if this bug has been reported before.
Well, at least I wrote another nice summary... ;-)