Bug 14787 - nVidia GLX indirect rendering support security issues
Summary: nVidia GLX indirect rendering support security issues
Alias: None
Product: Mageia
Classification: Unclassified
Component: Security (show other bugs)
Version: 4
Hardware: x86_64 Linux
Priority: Normal normal
Target Milestone: ---
Assignee: QA Team
QA Contact: Sec team
URL: https://nvidia.custhelp.com/app/answe...
Whiteboard: has_procedure advisory mga4-32-ok mga...
Keywords: validated_update
Depends on:
Blocks: 14884
  Show dependency treegraph
Reported: 2014-12-12 09:23 CET by Thomas Backlund
Modified: 2015-01-08 18:44 CET (History)
4 users (show)

See Also:
Source RPM:
Status comment:


Description Thomas Backlund 2014-12-12 09:23:20 CET
nvidia-current and nvidia304 needs update to latest stable.

nvidia173 needs patching

Cuda needs checking

Cauldron is OK since I've pushed the newest 304 and current drivers


Steps to Reproduce:
Comment 2 Thomas Backlund 2014-12-23 22:27:02 CET






Depends on: (none) => 14884

Comment 3 Thomas Backlund 2014-12-23 22:56:41 CET
Updated nvidia304 and nvidia-current drivers fixes security issues:

The NVIDIA Linux Discrete GPU drivers before R304.125, R331.x before
R331.113, R340.x before R340.65, R343.x before R343.36, and R346.x
before R346.22, Linux for Tegra (L4T) driver before R21.2, and Chrome
OS driver before R40 allows remote attackers to cause a denial of
service (segmentation fault and X server crash) or possibly execute
arbitrary code via a crafted GLX indirect rendering protocol request
(CVE-2014-8093, CVE-2014-8098, CVE-2014-8298).

Note, the nvidia173 173.14.39 driver in Mageia 4 is also vulnerable
to this issue, but as it has reached EOL upstream it wont get any
fixes for this.

For nvidia-cuda-toolkit, it's safe to use with the fixed nvidia304
and nvidia-current drivers released as part of this update.
Thomas Backlund 2014-12-24 00:09:24 CET

Assignee: tmb => qa-bugs

Comment 4 olivier charles 2014-12-27 10:40:56 CET
Testing on Mageia 4x64 real hardware with GeForce GTX 750/PCIe/SSE2.

Updated through MCC from :x11-driver-video-nvidia-current-331.79-1

To :
- dkms-nvidia-current-331.113-1.mga4.nonfree.x86_64
- nvidia-current-doc-html-331.113-1.mga4.nonfree.x86_64
- nvidia-current-kernel-3.14.27-desktop-1.mga4-331.113-1.mga4.nonfree.x86_64
- nvidia-current-kernel-desktop-latest-331.113-1.mga4.nonfree.x86_64
- x11-driver-video-nvidia-current-331.113-1.mga4.nonfree.x86_64

which brought along :

$ glxinfo | grep OpenGL
OpenGL vendor string: NVIDIA Corporation
OpenGL renderer string: GeForce GTX 750/PCIe/SSE2
OpenGL core profile version string: 4.3.0 NVIDIA 331.113
OpenGL core profile shading language version string: 4.30 NVIDIA via Cg compiler
OpenGL core profile context flags: (none)
OpenGL core profile profile mask: core profile
OpenGL core profile extensions:
OpenGL version string: 4.4.0 NVIDIA 331.113
OpenGL shading language version string: 4.40 NVIDIA via Cg compiler
OpenGL context flags: (none)
OpenGL profile mask: (none)
OpenGL extensions:

$ glxinfo | grep -i rendering
direct rendering: Yes
    GL_NV_parameter_buffer_object2, GL_NV_path_rendering, 
    GL_NV_parameter_buffer_object2, GL_NV_path_rendering,

Everything OK so far.

CC: (none) => olchal

Comment 5 olivier charles 2014-12-29 22:29:47 CET
Testing on Mageia4 x32 real hardware with GeForce GTX 750/PCIe/SSE2


Everything ok so far.
Comment 6 William Kenney 2014-12-30 17:42:03 CET
I would like to wait for:
Update request: kernel-3.14.27-1.mga4
to clear through the system before testing this.

CC: (none) => wilcal.int

Comment 7 Thomas Backlund 2014-12-30 18:08:58 CET
No can do

They are built to go out the same time as the kernel.

And the nvidia-current x86_64 has already been tested on:
above in comment 4 and:

and nvidia-current i586 on:
above in comment 5 and:

So its only nvidia304 tests that are missing

Blocks: (none) => 14884
Depends on: 14884 => (none)

Comment 8 William Kenney 2014-12-30 19:16:11 CET
(In reply to Thomas Backlund from comment #7)

> So its only nvidia304 tests that are missing

How does the nvidia304 differ from what I have tested?
Maybe I can't test it on my hardware?
Comment 9 Thomas Backlund 2014-12-30 19:28:17 CET
it's about support for older nvidia hardware, nvidia304 supports:

GeForce 600 Series:

GeForce GTX 690, GeForce GTX 680, GeForce GTX 670, GeForce GTX 660 Ti, GeForce GTX 660, GeForce GTX 650 Ti, GeForce GTX 650, GeForce GT 645, GeForce GT 640, GeForce GT 630, GeForce GT 620, GeForce GT 610, GeForce 605
GeForce 600M Series (Notebooks):

GeForce GTX 680M, GeForce GTX 675MX, GeForce GTX 675M, GeForce GTX 670MX, GeForce GTX 670M, GeForce GTX 660M, GeForce GT 650M, GeForce GT 645M, GeForce GT 640M, GeForce GT 640M LE, GeForce GT 635M, GeForce GT 630M, GeForce GT 620M, GeForce 610M
GeForce 500 Series:

GeForce GTX 590, GeForce GTX 580, GeForce GTX 570, GeForce GTX 560 Ti, GeForce GTX 560 SE, GeForce GTX 560, GeForce GTX 555, GeForce GTX 550 Ti, GeForce GT 545, GeForce GT 530, GeForce GT 520, GeForce 510
GeForce 500M Series (Notebooks):

GeForce GTX 580M, GeForce GTX 570M, GeForce GTX 560M, GeForce GT 555M, GeForce GT 550M, GeForce GT 540M, GeForce GT 525M, GeForce GT 520M, GeForce GT 520MX
GeForce 400 Series:

GeForce GTX 480, GeForce GTX 470, GeForce GTX 465, GeForce GTX 460 SE v2, GeForce GTX 460 SE, GeForce GTX 460, GeForce GTS 450, GeForce GT 440, GeForce GT 430, GeForce GT 420, GeForce 405
GeForce 400M Series (Notebooks):

GeForce GTX 485M, GeForce GTX 480M, GeForce GTX 470M, GeForce GTX 460M, GeForce GT 445M, GeForce GT 435M, GeForce GT 425M, GeForce GT 420M, GeForce GT 415M, GeForce 410M
GeForce 300 Series:

GeForce GT 340, GeForce GT 330, GeForce GT 320, GeForce 315, GeForce 310
GeForce 300M Series (Notebooks):

GeForce GTS 360M, GeForce GTS 350M, GeForce GT 335M, GeForce GT 330M, GeForce GT 325M, GeForce GT 320M, GeForce 320M, GeForce 315M, GeForce 310M, GeForce 305M
GeForce 200 Series:

GeForce GTX 295, GeForce GTX 285, GeForce GTX 280, GeForce GTX 275, GeForce GTX 260, GeForce GTS 250, GeForce GTS 240, GeForce GT 230, GeForce GT 240, GeForce GT 220, GeForce G210, GeForce 210, GeForce 205
GeForce 200M Series (Notebooks):

GeForce GTX 285M, GeForce GTX 280M, GeForce GTX 260M, GeForce GTS 260M, GeForce GTS 250M, GeForce GT 240M, GeForce GT 230M, GeForce GT 220M, GeForce G210M
GeForce 100 Series:

GeForce GT 140, GeForce GT 130, GeForce GT 120, GeForce G100
GeForce 100M Series (Notebooks):

GeForce GTS 160M, GeForce GTS 150M, GeForce GT 130M, GeForce GT 120M, GeForce G 110M, GeForce G 105M, GeForce G 103M, GeForce G 102M
GeForce 9 Series:

GeForce 9800 GX2, GeForce 9800 GTX/GTX+, GeForce 9800 GT, GeForce 9600 GT, GeForce 9600 GSO, GeForce 9600 GSO 512, GeForce 9600 GS, GeForce 9500 GT, GeForce 9500 GS, GeForce 9400 GT, GeForce 9400, GeForce 9300 GS, GeForce 9300 GE, GeForce 9300 SE, GeForce 9300, GeForce 9200, GeForce 9100
GeForce 9M Series (Notebooks):

GeForce 9800M GTX, GeForce 9800M GTS, GeForce 9800M GT, GeForce 9800M GS, GeForce 9700M GTS, GeForce 9700M GT, GeForce 9650M GT, GeForce 9650M GS, GeForce 9600M GT, GeForce 9600M GS, GeForce 9500M GS, GeForce 9500M G, GeForce 9400M G, GeForce 9400M, GeForce 9300M GS, GeForce 9300M G, GeForce 9200M GS, GeForce 9100M G
GeForce 8 Series:

GeForce 8800 Ultra, GeForce 8800 GTX, GeForce 8800 GTS 512, GeForce 8800 GTS, GeForce 8800 GT, GeForce 8800 GS, GeForce 8600 GTS, GeForce 8600 GT, GeForce 8600 GS, GeForce 8500 GT, GeForce 8400 GS, GeForce 8400 SE, GeForce 8400, GeForce 8300 GS, GeForce 8300, GeForce 8200, GeForce 8200 /nForce 730a, GeForce 8100 /nForce 720a
GeForce 8M Series (Notebooks):

GeForce 8800M GTX, GeForce 8800M GTS, GeForce 8700M GT, GeForce 8600M GT, GeForce 8600M GS, GeForce 8400M GT, GeForce 8400M GS, GeForce 8400M G, GeForce 8200M G, GeForce 8200M
GeForce 7 Series:

GeForce 7025 / NVIDIA nForce 630a, GeForce 7050 PV / NVIDIA nForce 630a, GeForce 7050 / NVIDIA nForce 610i, GeForce 7050 / NVIDIA nForce 630i, GeForce 7100 / NVIDIA nForce 630i, GeForce 7100 / NVIDIA nForce 620i, GeForce 7100 GS, GeForce 7150 / NVIDIA nForce 630i, GeForce 7300 SE / 7200 GS, GeForce 7300 LE, GeForce 7300 GS, GeForce 7300 GT, GeForce 7350 LE, GeForce 7500 LE, GeForce 7550 LE, GeForce 7600 LE, GeForce 7600 GS, GeForce 7600 GT, GeForce 7650 GS, GeForce 7800 GT, GeForce 7800 GS, GeForce 7800 GTX, GeForce 7800 SLI, GeForce 7900 GS, GeForce 7900 GT/GTO, GeForce 7900 GTX, GeForce 7950 GT, GeForce 7950 GX2
GeForce Go 7 Series (Notebooks):

GeForce Go 7950 GTX, GeForce Go 7900 GS, GeForce Go 7800 GTX, GeForce Go 7800, GeForce Go 7700, GeForce Go 7600, GeForce Go 7400, GeForce Go 7300, GeForce Go 7200, GeForce 7150M / nForce 630M, GeForce 7000M / nForce 610M
GeForce 6 Series:

GeForce 6100, GeForce 6100 nForce 400, GeForce 6100 nForce 405, GeForce 6100 nForce 420, GeForce 6150, GeForce 6150 LE, GeForce 6150LE / Quadro NVS 210S , GeForce 6150SE nForce 430, GeForce 6200, GeForce 6200 A-LE, GeForce 6200 LE, GeForce 6200 TurboCache(TM), GeForce 6200SE TurboCache(TM), GeForce 6250, GeForce 6500, GeForce 6600, GeForce 6600 GT, GeForce 6600 LE, GeForce 6600 VE, GeForce 6610 XL, GeForce 6700 XL, GeForce 6800, GeForce 6800 GS, GeForce 6800 GS/XT, GeForce 6800 GT, GeForce 6800 LE, GeForce 6800 Ultra, GeForce 6800 XE, GeForce 6800 XT
Quadro Series:

Quadro K5000, Quadro 6000, Quadro 5000, Quadro 4000, Quadro 2000, Quadro 2000D, Quadro 600, Quadro 410, Quadro 400
Quadro Series (Notebooks):

Quadro K5000M, Quadro K4000M, Quadro K3000M, Quadro K2000M, Quadro K1000M, Quadro 5010M, Quadro 5000M, Quadro 4000M, Quadro 3000M, Quadro 2000M, Quadro 1000M
Quadro FX Series:

Quadro CX, Quadro FX 350, Quadro FX 370, Quadro FX 370 Low Profile, Quadro FX 380, Quadro FX 380 Low Profile, Quadro FX 470, Quadro FX 540, Quadro FX 550, Quadro FX 560, Quadro FX 570, Quadro FX 580, Quadro FX 1400, Quadro FX 1700, Quadro FX 1500, Quadro FX 1800, Quadro FX 2000, Quadro FX 3450, Quadro FX 3500, Quadro FX 3700, Quadro FX 3800, Quadro FX 4000, Quadro FX 4500, Quadro FX 4500 X2, Quadro FX 4600, Quadro FX 4700 X2, Quadro FX 4800, Quadro FX 5500, Quadro FX 5600, Quadro FX 5800
Quadro FX Series (Notebooks):

Quadro FX 3800M, Quadro FX 3700M, Quadro FX 3600M, Quadro FX 2800M, Quadro FX 2700M, Quadro FX 1800M, Quadro FX 1700M, Quadro FX 1600M, Quadro FX 880M, Quadro FX 770M, Quadro FX 570M, Quadro FX 380M, Quadro FX 360M
Quadro NVS Series:

Quadro NVS 285, Quadro NVS 290, Quadro NVS 295, NVS 510, NVS 310, NVS 300, Quadro NVS 420, Quadro NVS 440, Quadro NVS 450
Quadro NVS Series (Notebooks):

NVS 5400M, NVS 5200M, NVS 5100M, NVS 4200M, NVS 3100M, NVS 2100M, Quadro NVS 510M, Quadro NVS 320M, Quadro NVS 160M, Quadro NVS 150M, Quadro NVS 140M, Quadro NVS 135M, Quadro NVS 130M, Quadro NVS 120M, Quadro NVS 110M
Quadro Plex Series:

Quadro Plex Model II, Quadro Plex D Series, Quadro Plex Model IV, Quadro Plex 7000
Quadro Sync Series:

Quadro Sync, Quadro G-Sync II
Quadro SDI:

Quadro SDI
GRID Series:

NVS Series:

Quadro NVS 285, Quadro NVS 290, Quadro NVS 295, NVS 510, NVS 310, NVS 300, Quadro NVS 420, Quadro NVS 440, Quadro NVS 450
NVS Series (Notebooks):

NVS 5400M, NVS 5200M, NVS 5100M, NVS 4200M, NVS 3100M, NVS 2100M, Quadro NVS 320M, Quadro NVS 160M, Quadro NVS 150M, Quadro NVS 140M, Quadro NVS 135M, Quadro NVS 130M, Quadro NVS 120M, Quadro NVS 110M

Tesla K10

Tesla C2075, Tesla C2070, Tesla C2050, Tesla C1060, Tesla C870

M2090, M2075, M2070, M2070-Q, M2050, M1060

Tesla X2090
ION (Desktops):

ION (Notebooks):

ION LE (Desktops):

ION LE (Notebooks):

Comment 10 William Kenney 2014-12-30 22:38:48 CET
On real hardware, M4.1, KDE, 64-bit

default install of:
dkms-nvidia-current nvidia-current-kernel-desktop-latest

[wilcal@localhost ~]$ uname -a
Linux localhost 3.14.24-desktop-1.mga4 #1 SMP Sat Nov 15 23:54:03 UTC 2014 x86_64 x86_64 x86_64 GNU/Linux
[root@localhost wilcal]# urpmi dkms-nvidia-current
Package dkms-nvidia-current-331.79-1.mga4.nonfree.x86_64 is already installed
[root@localhost wilcal]# urpmi nvidia-current-kernel-desktop-latest
Package nvidia-current-kernel-desktop-latest-331.79-12.mga4.nonfree.x86_64 is already installed
[root@localhost wilcal]# urpmi x11-driver-video-nvidia-current
Package x11-driver-video-nvidia-current-331.79-1.mga4.nonfree.x86_64 is already installed
[root@localhost wilcal]# lspci -k
01:00.0 VGA compatible controller: NVIDIA Corporation GF108 [GeForce GT 440] (rev a1)
        Subsystem: Gigabyte Technology Co., Ltd Device 3518
        Kernel driver in use: nvidia
        Kernel modules: nvidiafb, nouveau, nvidia_current

Boots to a working desktop., common apps work

dkms-nvidia304 nvidia304-kernel-desktop-latest x11-driver-video-nvidia304

[wilcal@localhost ~]$ uname -a
Linux localhost 3.14.24-desktop-1.mga4 #1 SMP Sat Nov 15 23:54:03 UTC 2014 x86_64 x86_64 x86_64 GNU/Linux
[root@localhost wilcal]# urpmi dkms-nvidia304
Package dkms-nvidia304-304.121-1.mga4.nonfree.x86_64 is already installed
[root@localhost wilcal]# urpmi nvidia304-kernel-desktop-latest
Package nvidia304-kernel-desktop-latest-304.121-7.mga4.nonfree.x86_64 is already installed
[root@localhost wilcal]# urpmi x11-driver-video-nvidia304
Package x11-driver-video-nvidia304-304.121-1.mga4.nonfree.x86_64 is already installed
[root@localhost wilcal]# lspci -k
01:00.0 VGA compatible controller: NVIDIA Corporation GF108 [GeForce GT 440] (rev a1)
        Subsystem: Gigabyte Technology Co., Ltd Device 3518
        Kernel driver in use: nvidia
        Kernel modules: nvidiafb, nouveau, nvidia304, nvidia_current
Boots to a working desktop, common apps work

dkms-nvidia304 nvidia304-kernel-desktop-latest x11-driver-video-nvidia304
from updates_testing

[wilcal@localhost ~]$ uname -a
Linux localhost 3.14.24-desktop-1.mga4 #1 SMP Sat Nov 15 23:54:03 UTC 2014 x86_64 x86_64 x86_64 GNU/Linux
[root@localhost wilcal]# urpmi dkms-nvidia304
Package dkms-nvidia304-304.125-1.mga4.nonfree.x86_64 is already installed
[root@localhost wilcal]# urpmi nvidia304-kernel-desktop-latest
Package nvidia304-kernel-desktop-latest-304.125-1.mga4.nonfree.x86_64 is already installed
[root@localhost wilcal]# urpmi x11-driver-video-nvidia304
Package x11-driver-video-nvidia304-304.125-1.mga4.nonfree.x86_64 is already installed
[root@localhost wilcal]# lspci -k
01:00.0 VGA compatible controller: NVIDIA Corporation GF108 [GeForce GT 440] (rev a1)
        Subsystem: Gigabyte Technology Co., Ltd Device 3518
        Kernel driver in use: nvidia
        Kernel modules: nvidiafb, nouveau, nvidia304, nvidia_current

Boots to a working desktop, common apps work

I have not booted this system to the 3.14.27 kernel but it did install as it's in the
updates_testing repo. During the boot I manually selected the 3.14.24 kernel ( GRUB2 ).
If I allow it to boot with the 3.14.27 kernel it hangs during boot.

Test platform:
Intel Core i7-2600K Sandy Bridge 3.4GHz
GIGABYTE GV-N440D3-1GI Nvidia GeForce GT 440 (Fermi) 1GB
RTL8111/8168B PCI Express 1Gbit Ethernet
DRAM 16GB (4 x 4GB)
Mageia 4 64-bit, Nvidia driver
Comment 11 Bill Wilkinson 2015-01-03 04:06:12 CET
Tested nvidia 304 on mga4 32 and 64, general usage with 3.14.27 kernel, all behaves as normal

If someone wants to do more in-depth testing, feel free, or this is probably ready to ship.

CC: (none) => wrw105

Comment 12 claire robinson 2015-01-04 17:21:58 CET
Testing complete mga4 64 nvidia-current. Also with nvidia304 installed/updated but without supported hardware.

Whiteboard: (none) => mga4-64-ok

Comment 13 claire robinson 2015-01-04 17:22:28 CET
cuda also checked using some examples from phoronix-test-suite
Comment 14 claire robinson 2015-01-07 15:26:20 CET
Adding 32bit ok from previous testing

Whiteboard: mga4-64-ok => has_procedure mga4-32-ok mga4-64-ok

Comment 15 claire robinson 2015-01-07 15:48:21 CET
Validating. Advisory uploaded.

Please push to 4 updates together with the kernel update bug 14884


Keywords: (none) => validated_update
Whiteboard: has_procedure mga4-32-ok mga4-64-ok => has_procedure advisory mga4-32-ok mga4-64-ok
CC: (none) => sysadmin-bugs

Comment 16 Mageia Robot 2015-01-07 16:15:30 CET
An update for this issue has been pushed to Mageia Updates repository.


Resolution: (none) => FIXED

Comment 17 David Walser 2015-01-07 19:02:49 CET
LWN reference for CVE-2014-8298:
Comment 18 David Walser 2015-01-08 18:39:48 CET
People are reporting breakages with this update, and it looks like some packages haven't been pushed.  While SRPMS for nonfree updates_testing is empty, for i586 I still see these packages:

Resolution: FIXED => (none)

Comment 19 Thomas Backlund 2015-01-08 18:44:21 CET
Nope, those are leftovers from a 3.14.25 testkernel set.

the ones pushed to mirrors matched 3.14.27 kernel

Resolution: (none) => FIXED

Note You need to log in before you can comment on or make changes to this bug.