PT-2016-7307 · Nvidia+1 · Nvidia Gpu Display Driver+1
Published
2016-11-03
·
Updated
2019-10-19
·
CVE-2016-7389
CVSS v3.1
7.8
High
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
NVIDIA GPU Display Driver on Linux versions prior to 304.132
NVIDIA GPU Display Driver on Linux versions prior to 340.98
NVIDIA GPU Display Driver on Linux versions prior to 367.55
NVIDIA GPU Display Driver on Linux versions prior to 361.93.03
NVIDIA GPU Display Driver on Linux versions prior to 370.28
Description
The issue is related to improper input validation in the kernel mode layer handler for
mmap(), which may allow users to gain access to arbitrary physical memory. This could lead to an escalation of privileges.Recommendations
For versions prior to 304.132, update to version 304.132 or later.
For versions prior to 340.98, update to version 340.98 or later.
For versions prior to 367.55, update to version 367.55 or later.
For versions prior to 361.93.03, update to version 361.93.03 or later.
For versions prior to 370.28, update to version 370.28 or later.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Nvidia Gpu Display Driver
Ubuntu