Your submission was sent successfully! Close

CVE-2007-3532

Published: 27 July 2007

NVIDIA drivers (nvidia-drivers) before 1.0.7185, 1.0.9639, and 100.14.11, as used in Gentoo Linux and possibly other distributions, creates /dev/nvidia* device files with insecure permissions, which allows local users to modify video card settings, cause a denial of service (crash or physical video card damage), and obtain sensitive information.

Notes

AuthorNote
kees
the device files seem bad only on systems that are actively using the
nvidia drivers.
mdeslaur
dapper desktop is EOL now
Priority

Low

Status

Package Release Status
linux-restricted-modules
Launchpad, Ubuntu, Debian
dapper Does not exist

hardy Does not exist

intrepid Not vulnerable

jaunty Not vulnerable

karmic Does not exist

lucid Does not exist

maverick Does not exist

natty Does not exist

oneiric Does not exist

precise Does not exist

quantal Does not exist

raring Does not exist

saucy Does not exist

upstream Not vulnerable

linux-restricted-modules-2.6.15
Launchpad, Ubuntu, Debian
dapper Ignored
(desktop is EOL)
hardy Does not exist

intrepid Does not exist

jaunty Does not exist

karmic Does not exist

lucid Does not exist

maverick Does not exist

natty Does not exist

oneiric Does not exist

precise Does not exist

quantal Does not exist

raring Does not exist

saucy Does not exist

upstream Needed

linux-restricted-modules-2.6.24
Launchpad, Ubuntu, Debian
dapper Does not exist

hardy Ignored
(reached end-of-life)
intrepid Does not exist

jaunty Does not exist

karmic Does not exist

lucid Does not exist

maverick Does not exist

natty Does not exist

oneiric Does not exist

precise Does not exist

quantal Does not exist

raring Does not exist

saucy Does not exist

upstream Needed