CVE-2021-1056

CVSS v3.1

7.1

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

Name of the Vulnerable Software and Affected Versions NVIDIA GPU Display Driver for Linux, all versions

Description The issue arises from the kernel mode layer (nvidia.ko) not completely honoring operating system file system permissions, which is intended to provide GPU device-level isolation. This may lead to denial of service or information disclosure.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

DoS

Incorrect Default Permissions

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-276

Related Identifiers

CVE-2021-1056

DLA-2888-1

MGASA-2021-0026

MGASA-2021-0029

USN-4689-1

USN-4689-2

Affected Products

Linuxmint

Nvidia Gpu Display Driver

Ubuntu

CVE-2021-1056

Weakness Enumeration

Related Identifiers

Affected Products

References · 31