CVE-2021-1052

Published: 07 January 2021

NVIDIA GPU Display Driver for Windows and Linux, all versions, contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgkDdiEscape or IOCTL in which user-mode clients can access legacy privileged APIs, which may lead to denial of service, escalation of privileges, and information disclosure.

From the Ubuntu security team

It was discovered that the NVIDIA GPU display driver for the Linux kernel contained a vulnerability that allowed user-mode clients to access legacy privileged APIs. A local attacker could use this to cause a denial of service or escalate privileges.

Priority

Medium

CVSS 3 base score: 7.8

Status

Package Release Status
nvidia-graphics-drivers-390
Launchpad, Ubuntu, Debian 		Upstream Not vulnerable

Ubuntu 20.10 (Groovy Gorilla) Not vulnerable

Ubuntu 20.04 LTS (Focal Fossa) Not vulnerable

Ubuntu 18.04 LTS (Bionic Beaver) Not vulnerable

Ubuntu 16.04 ESM (Xenial Xerus) Does not exist

Ubuntu 14.04 ESM (Trusty Tahr) Does not exist

nvidia-graphics-drivers-418-server
Launchpad, Ubuntu, Debian 		Upstream Needs triage

Ubuntu 20.10 (Groovy Gorilla)
Released (418.181.07-0ubuntu0.20.10.1)
Ubuntu 20.04 LTS (Focal Fossa)
Released (418.181.07-0ubuntu0.20.04.1)
Ubuntu 18.04 LTS (Bionic Beaver)
Released (418.181.07-0ubuntu0.18.04.1)
Ubuntu 16.04 ESM (Xenial Xerus) Does not exist

Ubuntu 14.04 ESM (Trusty Tahr) Does not exist

nvidia-graphics-drivers-440-server
Launchpad, Ubuntu, Debian 		Upstream Needs triage

Ubuntu 20.10 (Groovy Gorilla) Ignored
(superseded by 450-server)
Ubuntu 20.04 LTS (Focal Fossa) Ignored
(superseded by 450-server)
Ubuntu 18.04 LTS (Bionic Beaver) Ignored
(superseded by 450-server)
Ubuntu 16.04 ESM (Xenial Xerus) Does not exist

Ubuntu 14.04 ESM (Trusty Tahr) Does not exist

nvidia-graphics-drivers-450
Launchpad, Ubuntu, Debian 		Upstream Needs triage

Ubuntu 20.10 (Groovy Gorilla)
Released (450.102.04-0ubuntu0.20.10.1)
Ubuntu 20.04 LTS (Focal Fossa)
Released (450.102.04-0ubuntu0.20.04.1)
Ubuntu 18.04 LTS (Bionic Beaver)
Released (450.102.04-0ubuntu0.18.04.1)
Ubuntu 16.04 ESM (Xenial Xerus) Does not exist

Ubuntu 14.04 ESM (Trusty Tahr) Does not exist

nvidia-graphics-drivers-450-server
Launchpad, Ubuntu, Debian 		Upstream Needs triage

Ubuntu 20.10 (Groovy Gorilla)
Released (450.102.04-0ubuntu0.20.10.1)
Ubuntu 20.04 LTS (Focal Fossa)
Released (450.102.04-0ubuntu0.20.04.1)
Ubuntu 18.04 LTS (Bionic Beaver)
Released (450.102.04-0ubuntu0.18.04.1)
Ubuntu 16.04 ESM (Xenial Xerus) Does not exist

Ubuntu 14.04 ESM (Trusty Tahr) Does not exist

nvidia-graphics-drivers-455
Launchpad, Ubuntu, Debian 		Upstream Ignored

Ubuntu 20.10 (Groovy Gorilla) Ignored
(not available)
Ubuntu 20.04 LTS (Focal Fossa) Ignored
(not available)
Ubuntu 18.04 LTS (Bionic Beaver) Ignored
(not available)
Ubuntu 16.04 ESM (Xenial Xerus) Does not exist

Ubuntu 14.04 ESM (Trusty Tahr) Does not exist

nvidia-graphics-drivers-460
Launchpad, Ubuntu, Debian 		Upstream Needs triage

Ubuntu 20.10 (Groovy Gorilla)
Released (460.32.03-0ubuntu0.20.10.1)
Ubuntu 20.04 LTS (Focal Fossa)
Released (460.32.03-0ubuntu0.20.04.1)
Ubuntu 18.04 LTS (Bionic Beaver)
Released (460.32.03-0ubuntu0.18.04.1)
Ubuntu 16.04 ESM (Xenial Xerus) Does not exist

Ubuntu 14.04 ESM (Trusty Tahr) Does not exist

Notes

AuthorNote
amurray 
CVE-2021-1052 and CVE-2021-1053 affect the following NVIDIA driver series: 450, 455, 418-server, 440-server, 450-server
sbeattie 
Does not affect 390 series drivers
sbeattie 
NVIDIA series 455 are superseded by series 460 NVIDIA series 440-server are superseded by series 450

References

Bugs

Join the discussion

Canonical is offering Extended Security Maintenance

Canonical is offering Ubuntu 14.04 Extended Security Maintenance (ESM) for security fixes and essential packages.

Find out more about ESM

Further reading