| Summary: | Update request: nvidia390-390.141-1.mga7.nonfree | ||
|---|---|---|---|
| Product: | Mageia | Reporter: | Thomas Backlund <tmb> |
| Component: | Security | Assignee: | QA Team <qa-bugs> |
| Status: | RESOLVED FIXED | QA Contact: | Sec team <security> |
| Severity: | major | ||
| Priority: | High | CC: | brtians1, ouaurelien, sysadmin-bugs |
| Version: | 7 | Keywords: | advisory, validated_update |
| Target Milestone: | --- | ||
| Hardware: | All | ||
| OS: | Linux | ||
| Whiteboard: | MGA7-64-OK | ||
| Source RPM: | nvidia390 | CVE: | |
| Status comment: | |||
| Bug Depends on: | |||
| Bug Blocks: | 27938, 27939 | ||
|
Description
Thomas Backlund
2021-01-09 21:38:44 CET
Aurelien Oudelet
2021-01-10 18:58:49 CET
Blocks:
(none) =>
27938
Aurelien Oudelet
2021-01-10 19:00:16 CET
Blocks:
(none) =>
27939
Aurelien Oudelet
2021-01-10 19:01:21 CET
CC:
(none) =>
ouaurelien This is now a security update: https://nvidia.custhelp.com/app/answers/detail/a_id/5142/kw/Security%20Bulletin Component:
RPM Packages =>
Security 1. Installed Nvidia 390-390-141.1 driver The following 3 packages are going to be installed: - dkms-nvidia390-390.141-1.mga7.nonfree.x86_64 - nvidia390-cuda-opencl-390.141-1.mga7.nonfree.x86_64 - x11-driver-video-nvidia390-390.141-1.mga7.nonfree.x86_64 CC:
(none) =>
brtians1 rebooted and came back fine brian@linux ~]$ uname -a Linux linux.local 5.7.19-desktop-3.mga7 #1 SMP Sun Oct 18 15:46:00 UTC 2020 x86_64 x86_64 x86_64 GNU/Linux [brian@linux ~]$ lsmod | grep nvidia nvidia_drm 49152 2 nvidia_modeset 1056768 16 nvidia_drm nvidia 15831040 679 nvidia_modeset ipmi_msghandler 69632 2 ipmi_devintf,nvidia drm_kms_helper 245760 1 nvidia_drm drm 589824 6 drm_kms_helper,nvidia_drm,ttm working as designed. Suggested advisory: ======================== The updated packages fix security vulnerabilities: NVIDIA GPU Display Driver Linux contains a vulnerability in the kernel mode layer (nvidia.ko) IOCTL in which user-mode clients can access legacy privileged APIs, which may lead to denial of service, escalation of privileges, and information disclosure (CVE‑2021‑1052). NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel mode layer (nvidia.ko) IOCTL in which improper validation of a user pointer may lead to denial of service (CVE‑2021‑1053). NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel mode layer (nvidia.ko) in which it does not completely honor operating system file system permissions to provide GPU device-level isolation, which may lead to denial of service or information disclosure (CVE‑2021‑1056). References: - https://nvidia.custhelp.com/app/answers/detail/a_id/5142/~/security-bulletin%3A-nvidia-gpu-display-driver---january-2021 ======================== Updated packages in core/updates_testing: ======================== i586: dkms-nvidia390-390.141-1.mga7.nonfree.i586.rpm nvidia390-cuda-opencl-390.141-1.mga7.nonfree.i586.rpm nvidia390-devel-390.141-1.mga7.nonfree.i586.rpm nvidia390-doc-html-390.141-1.mga7.nonfree.i586.rpm x11-driver-video-nvidia390-390.141-1.mga7.nonfree.i586.rpm x86_64: dkms-nvidia390-390.141-1.mga7.nonfree.x86_64.rpm nvidia390-cuda-opencl-390.141-1.mga7.nonfree.x86_64.rpm nvidia390-devel-390.141-1.mga7.nonfree.x86_64.rpm nvidia390-doc-html-390.141-1.mga7.nonfree.x86_64.rpm x11-driver-video-nvidia390-390.141-1.mga7.nonfree.x86_64.rpm from SRPM nvidia390-390.141-1.mga7.nonfree.src.rpm Nvidia Geforce GTX 670 on two different machines With kernel 5.7.19 and 5.10.6 MGA7-64-OK Validating update, see Comment 4. Advisory pushed to SVN. Whiteboard:
(none) =>
MGA7-64-OK An update for this issue has been pushed to the Mageia Updates repository. https://advisories.mageia.org/MGASA-2021-0026.html Status:
NEW =>
RESOLVED |