PT-2011-2514 · Nvidia · Nvidia Cuda Toolkit
Alex Granovsky
·
Publicado
2011-01-22
·
Atualizado
2018-10-09
·
CVE-2011-0636
CVSS v2.0
2.1
Baixa
| Vetor | AV:L/AC:L/Au:N/C:P/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
NVIDIA CUDA Toolkit versions 3.2 developer drivers for Linux 260.19.26
Description
The issue concerns the cudaHostAlloc and cuMemHostAlloc functions, which do not initialize pinned memory. This allows local users to read potentially sensitive memory, such as file fragments during read or write operations.
Recommendations
For NVIDIA CUDA Toolkit version 3.2, consider updating to a version where the cudaHostAlloc and cuMemHostAlloc functions properly initialize pinned memory to prevent unauthorized access to sensitive data.
Correção
Information Disclosure
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Nvidia Cuda Toolkit