Your message dated Sat, 08 Apr 2017 15:47:08 +0000 with message-id <e1cwszw-0000fh...@fasolo.debian.org> and subject line Bug#855277: fixed in nvidia-graphics-drivers 340.102-1 has caused the Debian Bug report #855277, regarding nvidia-graphics-drivers: CVE-2017-0309, CVE-2017-0310, CVE-2017-0311, CVE-2017-0321, CVE-2017-0318 to be marked as done.
This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 855277: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=855277 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems
--- Begin Message ---Source: nvidia-graphics-drivers Version: 343.22-1 Severity: serious Tags: security Control: found -1 1.0.4363-1 Control: found -1 310.14-1 Control: clone -1 -2 -3 Control: reassign -2 src:nvidia-graphics-drivers-legacy-340xx 340.76-6 Control: retitle -2 nvidia-graphics-drivers-legacy-340xx: CVE-2017-0309, CVE-2017-0310, CVE-2017-0311, CVE-2017-0321, CVE-2017-0318 Control: reassign -3 src:nvidia-graphics-drivers-legacy-304xx 304.108-2 Control: retitle -3 nvidia-graphics-drivers-legacy-304xx: CVE-2017-0309, CVE-2017-0310, CVE-2017-0311, CVE-2017-0321, CVE-2017-0318 http://nvidia.custhelp.com/app/answers/detail/a_id/4398 CVE-2017-0309 NVIDIA GPU Display Driver contains a vulnerability in the kernel mode layer handler where multiple integer overflows may cause improper memory allocation, which may lead to a denial of service or potential escalation of privileges. CVE-2017-0310 NVIDIA GPU Display Driver contains a vulnerability in the kernel mode layer handler where improper access controls allow an unprivileged user to cause a denial of service. CVE-2017-0311 NVIDIA GPU Display Driver contains a vulnerability in the kernel mode layer handler where improper access control may lead to a denial of service or possible escalation of privileges. CVE-2017-0321 NVIDIA GPU Display Driver contains a vulnerability in the kernel mode layer handler where a NULL pointer dereference caused by invalid user input may lead to a denial of service or potential escalation of privileges. CVE-2017-0318 NVIDIA Linux GPU Display Driver contains a vulnerability in the kernel mode layer handler where improper validation of an input parameter may cause a denial of service on the system. Andreas
--- End Message ---
--- Begin Message ---Source: nvidia-graphics-drivers Source-Version: 340.102-1 We believe that the bug you reported is fixed in the latest version of nvidia-graphics-drivers, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to 855...@bugs.debian.org, and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Andreas Beckmann <a...@debian.org> (supplier of updated nvidia-graphics-drivers package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing ftpmas...@ftp-master.debian.org) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Tue, 04 Apr 2017 22:12:27 +0200 Source: nvidia-graphics-drivers Binary: nvidia-driver nvidia-driver-bin nvidia-glx xserver-xorg-video-nvidia libgl1-nvidia-glx libgl1-nvidia-glx-i386 libegl1-nvidia libgles1-nvidia libgles2-nvidia libnvidia-eglcore nvidia-alternative nvidia-kernel-dkms nvidia-kernel-source nvidia-vdpau-driver nvidia-smi nvidia-cuda-mps libcuda1 libcuda1-i386 libnvidia-compiler libnvcuvid1 libnvidia-encode1 libnvidia-ifr1 libnvidia-fbc1 libnvidia-ml1 nvidia-opencl-common nvidia-opencl-icd nvidia-libopencl1 nvidia-detect Architecture: source Version: 340.102-1 Distribution: jessie Urgency: medium Maintainer: Debian NVIDIA Maintainers <pkg-nvidia-de...@lists.alioth.debian.org> Changed-By: Andreas Beckmann <a...@debian.org> Description: libcuda1 - NVIDIA CUDA Driver Library${nvidia:LegacyDesc} libcuda1-i386 - NVIDIA CUDA 32-bit runtime library${nvidia:LegacyDesc} libegl1-nvidia - NVIDIA binary EGL library${nvidia:LegacyDesc} libgl1-nvidia-glx - NVIDIA binary OpenGL/GLX libraries${nvidia:LegacyDesc} libgl1-nvidia-glx-i386 - NVIDIA binary OpenGL/GLX 32-bit libraries${nvidia:LegacyDesc} libgles1-nvidia - NVIDIA binary OpenGL|ES 1.x library${nvidia:LegacyDesc} libgles2-nvidia - NVIDIA binary OpenGL|ES 2.x library${nvidia:LegacyDesc} libnvcuvid1 - NVIDIA CUDA Video Decoder runtime library${nvidia:LegacyDesc} libnvidia-compiler - NVIDIA runtime compiler library${nvidia:LegacyDesc} libnvidia-eglcore - NVIDIA binary EGL core libraries${nvidia:LegacyDesc} libnvidia-encode1 - NVENC Video Encoding runtime library${nvidia:LegacyDesc} libnvidia-fbc1 - NVIDIA OpenGL-based Framebuffer Capture runtime library${nvidia:L libnvidia-ifr1 - NVIDIA OpenGL-based Inband Frame Readback runtime library${nvidia libnvidia-ml1 - NVIDIA Management Library (NVML) runtime library${nvidia:LegacyDe nvidia-alternative - allows the selection of NVIDIA as GLX provider${nvidia:LegacyDesc nvidia-cuda-mps - NVIDIA CUDA Multi Process Service (MPS) nvidia-detect - NVIDIA GPU detection utility nvidia-driver - NVIDIA metapackage${nvidia:LegacyDesc} nvidia-driver-bin - NVIDIA driver support binaries${nvidia:LegacyDesc} nvidia-glx - transition to ${nvidia}-driver nvidia-kernel-dkms - NVIDIA binary kernel module DKMS source${nvidia:LegacyDesc} nvidia-kernel-source - NVIDIA binary kernel module source${nvidia:LegacyDesc} nvidia-libopencl1 - NVIDIA OpenCL ICD Loader library nvidia-opencl-common - NVIDIA OpenCL driver - common files nvidia-opencl-icd - NVIDIA OpenCL installable client driver (ICD)${nvidia:LegacyDesc} nvidia-smi - NVIDIA System Management Interface${nvidia:LegacyDesc} nvidia-vdpau-driver - Video Decode and Presentation API for Unix - NVIDIA driver${nvidi xserver-xorg-video-nvidia - NVIDIA binary Xorg driver${nvidia:LegacyDesc} Closes: 764639 855277 Changes: nvidia-graphics-drivers (340.102-1) jessie; urgency=medium . * New upstream legacy 340xx branch release 340.102 (2017-02-14). * Fixed CVE-2017-0309, CVE-2017-0310, CVE-2017-0311, CVE-2017-0318, CVE-2017-0321. (Closes: #855277) . [ Andreas Beckmann ] * unregister_proc_on_failure.patch: New, unregister procfs entries during error unwind if loading the module failed. (Closes: #764639) * Upload to jessie. . [ Luca Boccassi ] * Add deprecated-cpu-events.patch and vmf-address.patch to fix kernel module build on Linux 4.10 and newer. Checksums-Sha1: 33a85fc9474f63e5272595c9f4be3c240f2ce6c6 5474 nvidia-graphics-drivers_340.102-1.dsc f4fda4d0072f06c7b48dd7c20ffcd7fe9edc0f50 69928076 nvidia-graphics-drivers_340.102.orig-amd64.tar.gz 869c26cd9eb9bcbd20ab74f725953181a92c5919 23498470 nvidia-graphics-drivers_340.102.orig-armhf.tar.gz 6c26c81f93dcfb4566ec11ebd359e589296eaca2 38744685 nvidia-graphics-drivers_340.102.orig-i386.tar.gz 8483f84a22fdebd402eb6ffcd2d9b0d40782bfc5 138 nvidia-graphics-drivers_340.102.orig.tar.gz 07795538d187965c86b332860c09099d7c8efb46 124036 nvidia-graphics-drivers_340.102-1.debian.tar.xz Checksums-Sha256: 1060784c6958989ac2b8e0bde348518a92b4a27c01fbab1e69afa75435fb33bf 5474 nvidia-graphics-drivers_340.102-1.dsc fb3c21fa825660f46ac2fd2b502f8db9a021a13715aa977a394311b8e63030c8 69928076 nvidia-graphics-drivers_340.102.orig-amd64.tar.gz 12b1aaa7961905b3368304564d1fe5c8ac272e2b57bf1fcb9caa27ec74c38b8e 23498470 nvidia-graphics-drivers_340.102.orig-armhf.tar.gz c5b69e6ac4dfbe87fa08b702b60666a4fa996201077cf1623af955447dd4d8e0 38744685 nvidia-graphics-drivers_340.102.orig-i386.tar.gz 35e60368283bef06a1adae66c94f22eb6d342c3d49711ed9483f52ae4807ff26 138 nvidia-graphics-drivers_340.102.orig.tar.gz 267f9a63b550eb91af65172b605bfa51791f88d260d7457807d605b812e96b85 124036 nvidia-graphics-drivers_340.102-1.debian.tar.xz Files: 3367ba5d5d9aa7e4eb79e06a7dfd5ead 5474 non-free/libs optional nvidia-graphics-drivers_340.102-1.dsc 7cec06e7c630f4dada7d950a6527fc5e 69928076 non-free/libs optional nvidia-graphics-drivers_340.102.orig-amd64.tar.gz 797c8de9ffa8c49c0125c2e549f0f711 23498470 non-free/libs optional nvidia-graphics-drivers_340.102.orig-armhf.tar.gz 56f97efeeed8d188c85175446ec23415 38744685 non-free/libs optional nvidia-graphics-drivers_340.102.orig-i386.tar.gz 0d7c684e3b6607e56352f287588df315 138 non-free/libs optional nvidia-graphics-drivers_340.102.orig.tar.gz 265b471a7cc2488baa268bd6e580cd9c 124036 non-free/libs optional nvidia-graphics-drivers_340.102-1.debian.tar.xz -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIcBAEBCAAGBQJY5DMqAAoJEF+zP5NZ6e0I8BsP/12usnLxw5tDWx8iv0Rxg3Vq AlMKBJjIhE/fJqdkNTZk09y+ql07BAeMFnSvYRlKgwDU3uPi5gK6v/3sdJHR+/Nt dVwMWdhCstId6Xsgv6SZAx6lmbkYSLW+pU5Gt8mwM1xVEAU+6Iv7vJMm+yOceTyo pwcPRDJHrMPlM72J4sBKtDY9sKNzTqkXIju+d0pkZABoqJ1c53ZMEb4Ro6bQ/8iR sdxcDvfr9JayLvZRO2tBN+aFE2lUiLJ+Al/gMnDeooesrctuzlVDevD7qdc4srEe iQUKLVOl08R/5fDw5xrrCpa/VvP9Y0QCiOOMV6tgZLet9yHqDa5XD6NruaxFZqiY V5VaQZkoWKCHwfK0lueoe1IBMs1CyxuqFlXZPjngUX2B6YLSQatqeaJq6ixTGwlX 6RYcb8RlT8NnazyGZsM/dC7j7r+UY0ljFprCE9cNEw3UZIc77szqUaNv05SNsbU9 tSJx6ZUUPVjA4XypQu18s0TijCdMhe+ofhtuYf/VTG5CJIm9tDIjemypUgTSh/Xg A+X03wgr0F1TK9/J5lu0fYOBj+6S1oH1V1IOYzSfNeGIOGDZRxzvfcBpxz+s75U9 Vh3naEDmZHIfz2G0Zruv3YVnWeOEDeeyulhQm03IGpmQbnRb0qK1FmlM/T0EQPpr ktbTdKUJUCvA6lUVzad9 =PXpp -----END PGP SIGNATURE-----
--- End Message ---
