Source: nvidia-cuda-toolkit X-Debbugs-CC: t...@security.debian.org Severity: important Tags: security
Hi, The following vulnerability was published for nvidia-cuda-toolkit. CVE-2025-23247[0]: | NVIDIA CUDA Toolkit for all platforms contains a vulnerability in | the cuobjdump binary, where a failure to check the length of a | buffer could allow a user to cause the tool to crash or execute | arbitrary code by passing in a malformed ELF file. A successful | exploit of this vulnerability might lead to arbitrary code | execution. https://nvidia.custhelp.com/app/answers/detail/a_id/5643 If you fix the vulnerability please also make sure to include the CVE (Common Vulnerabilities & Exposures) id in your changelog entry. For further information see: [0] https://security-tracker.debian.org/tracker/CVE-2025-23247 https://www.cve.org/CVERecord?id=CVE-2025-23247 Please adjust the affected versions in the BTS as needed.
