Your message dated Sat, 24 Jul 2021 01:03:34 +0000 with message-id <e1m764k-0002vv...@fasolo.debian.org> and subject line Bug#991351: fixed in nvidia-graphics-drivers 460.91.03-1 has caused the Debian Bug report #991351, regarding nvidia-graphics-drivers: CVE-2021-1093, CVE-2021-1094, CVE-2021-1095 to be marked as done.
This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 991351: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=991351 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems
--- Begin Message ---Source: nvidia-graphics-drivers Severity: serious Tags: security upstream Control: clone -1 -2 -3 -4 -5 -6 -7 Control: reassign -2 src:nvidia-graphics-drivers-legacy-340xx 340.76-6 Control: retitle -2 nvidia-graphics-drivers-legacy-340xx: CVE-2021-1093, CVE-2021-1094, CVE-2021-1095 Control: tag -2 + wontfix Control: reassign -3 src:nvidia-graphics-drivers-legacy-390xx 390.48-4 Control: retitle -3 nvidia-graphics-drivers-legacy-390xx: CVE-2021-1093, CVE-2021-1094, CVE-2021-1095 Control: reassign -4 src:nvidia-graphics-drivers-tesla-418 418.87.01-1 Control: retitle -4 nvidia-graphics-drivers-tesla-418: CVE-2021-1093, CVE-2021-1094, CVE-2021-1095 Control: reassign -5 src:nvidia-graphics-drivers-tesla-440 440.64.00-1 Control: retitle -5 nvidia-graphics-drivers-tesla-440: CVE-2021-1093, CVE-2021-1094, CVE-2021-1095 Control: tag -5 + wontfix Control: reassign -6 src:nvidia-graphics-drivers-tesla-450 450.51.05-1 Control: retitle -6 nvidia-graphics-drivers-tesla-450: CVE-2021-1093, CVE-2021-1094, CVE-2021-1095 Control: reassign -7 src:nvidia-graphics-drivers-tesla-460 460.32.03-1 Control: retitle -7 nvidia-graphics-drivers-tesla-460: CVE-2021-1093, CVE-2021-1094, CVE-2021-1095 Control: found -1 340.24-1 Control: found -1 343.22-1 Control: found -1 396.18-1 Control: found -1 430.14-1 Control: found -1 450.51-1 Control: found -1 455.23.04-1 Control: found -1 465.24.02-1 https://nvidia.custhelp.com/app/answers/detail/a_id/5211 CVE‑2021‑1093 NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability in firmware where the driver contains an assert() or similar statement that can be triggered by an attacker, which leads to an application exit or other behavior that is more severe than necessary, and may lead to denial of service or system crash. CVE‑2021‑1094 NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgkDdiEscape where an out of bounds array access may lead to denial of service or information disclosure. CVE‑2021‑1095 NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handlers for all control calls with embedded parameters where dereferencing an untrusted pointer may lead to denial of service. Driver Branch CVE IDs Addressed R470, R460, R450, R418, R390 CVE‑2021‑1093, CVE‑2021‑1094, CVE‑2021‑1095 Andreas
--- End Message ---
--- Begin Message ---Source: nvidia-graphics-drivers Source-Version: 460.91.03-1 Done: Andreas Beckmann <a...@debian.org> We believe that the bug you reported is fixed in the latest version of nvidia-graphics-drivers, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to 991...@bugs.debian.org, and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Andreas Beckmann <a...@debian.org> (supplier of updated nvidia-graphics-drivers package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing ftpmas...@ftp-master.debian.org) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Sat, 24 Jul 2021 01:25:40 +0200 Source: nvidia-graphics-drivers Architecture: source Version: 460.91.03-1 Distribution: unstable Urgency: medium Maintainer: Debian NVIDIA Maintainers <pkg-nvidia-de...@lists.alioth.debian.org> Changed-By: Andreas Beckmann <a...@debian.org> Closes: 989069 989885 991351 Changes: nvidia-graphics-drivers (460.91.03-1) unstable; urgency=medium . * New upstream production branch release 460.91.03 (2021-07-20). * Fixed CVE-2021-1093, CVE-2021-1094, CVE-2021-1095. (Closes: #991351) https://nvidia.custhelp.com/app/answers/detail/a_id/5211 - Added support for the following GPUs: GeForce RTX 3070 Ti, CMP 50HX. * Fixed crash with certain DisplayPort devices. (Closes: #989069) . [ Andreas Beckmann ] * Update nv-readme.ids. * Drop manually added Depends: libcuda1 from libraries not referencing it. * nvidia-driver-libs: Add Recommends: libnvidia-encode1. (Closes: #989885) * debian/gen-control.pl: Support substitutions in the Vcs-Git field. * Compute and substitute the Git branch instead of hardcoding it. Checksums-Sha1: 53c73a0dc7ec67d831f6d412a497c28db399d154 6704 nvidia-graphics-drivers_460.91.03-1.dsc f55d7d364c7e3643d1210d2a6c64727ba64ca3a7 178178255 nvidia-graphics-drivers_460.91.03.orig-amd64.tar.gz eb8d1ddeb01aba022f9d6b78d8707866f68ff56d 111855843 nvidia-graphics-drivers_460.91.03.orig-arm64.tar.gz 7b0ff21736284eb3fe12a262358edd24801547b1 140 nvidia-graphics-drivers_460.91.03.orig.tar.gz 382a302bb7849e94e9531b4b0e28f13d9c3a381f 200148 nvidia-graphics-drivers_460.91.03-1.debian.tar.xz 39c74ffaccdcb82ed63580bf6147443daf96af1c 7859 nvidia-graphics-drivers_460.91.03-1_source.buildinfo Checksums-Sha256: 8c9118c15d97d30c98e60ab2e8f467849511c804580578d0d25ff54d59eca4b4 6704 nvidia-graphics-drivers_460.91.03-1.dsc 2381450e4a8fa673e1b9107d90873aa6b65f65f47580585b1beec615c6ee71bc 178178255 nvidia-graphics-drivers_460.91.03.orig-amd64.tar.gz a5a006e389125c839daa6c6d1853c5fe8227b03158d14d2aca07daed726fc83d 111855843 nvidia-graphics-drivers_460.91.03.orig-arm64.tar.gz ed2ac11f4c8f808b04a4d896b8f28cf2acbd686f881027cf251095f65ebf977d 140 nvidia-graphics-drivers_460.91.03.orig.tar.gz 6ac0557195fc051aad588b4bf82258f527e734f1b00416f24eaeebc6f2daa1b1 200148 nvidia-graphics-drivers_460.91.03-1.debian.tar.xz 889569d49451a40b951e8164bac76c1bf1e16a37bd96107bebfa03ce518ea354 7859 nvidia-graphics-drivers_460.91.03-1_source.buildinfo Files: daae7b9e8380ab222e3247211c157fe4 6704 non-free/libs optional nvidia-graphics-drivers_460.91.03-1.dsc eb01de3dc82a6e04548719913309d06d 178178255 non-free/libs optional nvidia-graphics-drivers_460.91.03.orig-amd64.tar.gz 359b5d688814174b64152ac5ebca6c34 111855843 non-free/libs optional nvidia-graphics-drivers_460.91.03.orig-arm64.tar.gz 7ee9524e1cb1f9eb67d3bfe6fc3d91af 140 non-free/libs optional nvidia-graphics-drivers_460.91.03.orig.tar.gz 4ae90988f2a40f799e78c94c7e75ba89 200148 non-free/libs optional nvidia-graphics-drivers_460.91.03-1.debian.tar.xz f8b3b77555bb860d532978344735eb04 7859 non-free/libs optional nvidia-graphics-drivers_460.91.03-1_source.buildinfo -----BEGIN PGP SIGNATURE----- iQJEBAEBCAAuFiEE6/MKMKjZxjvaRMaUX7M/k1np7QgFAmD7UIQQHGFuYmVAZGVi aWFuLm9yZwAKCRBfsz+TWentCEQjD/9Vo9xYOt4K2HyHlR9mmV75+monC8ZWiCmD ZoRJwhgRMYovzFjjP/3IQYV6c2czgsUYYXPrzyz8Hbno16cau2xA3zJlwYgjsiRM GiGasVko8O6aVSpOUCpMY5vCsrKKrNb+0r4S130+X6UB2rKyOY6fJQT353ToqNsJ fI+E86kH/lpGgK7UBgGbdDhugXnAzjCgPanwFc2ysD1Kqvdbn1vC0b025eoG0+Eq olznNnwJsM+MYTSuVxXS/TuLIk7dADHsXmu3iJsBczX5tjfJTxY1pBJoEQ4xAc8g Zg2fdk5Egikz7HeET2JlluAGZJtwAqdCFQIl82pK+xJ/l/UDeHlQxoWFQW/KBT9U vovp76wZlhVX554r9dvvfNyTn+pngifr/+otGtL+zcd6FfmlWVyvfbgF23zreyKo aXPOeYqMH65zhRgT6QCGZ/xSXRtdHbTSuw/BJufhGu6BthPs8XN72sQ/12o2CQ/I Z9iImCaAjgHtw5RR28oITtf1vDXOBtlbCs3ueTx4NU5vwR12CwdMyoPVBn5JBaMl ncXY4zqgNe5lxnaBnTrT4Agf+vVpfNIDMIqKBmpbePkNXYpnTKMn75oD31GTW+ee 7TorEFsqGYzxlf1PINq1ovbx3A1LjzAQzpeuYUIPri9W7hIkRYdDLCR5GZvQ3u31 Sf/1tW2R8Q== =egSW -----END PGP SIGNATURE-----
--- End Message ---
