Your submission was sent successfully! Close

CVE-2007-3532

Published: 27 July 2007

NVIDIA drivers (nvidia-drivers) before 1.0.7185, 1.0.9639, and 100.14.11, as used in Gentoo Linux and possibly other distributions, creates /dev/nvidia* device files with insecure permissions, which allows local users to modify video card settings, cause a denial of service (crash or physical video card damage), and obtain sensitive information.

Priority

Low

Status

Package Release Status
linux-restricted-modules
Launchpad, Ubuntu, Debian
Upstream Not vulnerable

linux-restricted-modules-2.6.15
Launchpad, Ubuntu, Debian
Upstream Needed

linux-restricted-modules-2.6.24
Launchpad, Ubuntu, Debian
Upstream Needed

Notes

AuthorNote
kees
the device files seem bad only on systems that are actively using the
nvidia drivers.
mdeslaur
dapper desktop is EOL now

References