Your message dated Sun, 22 May 2022 17:20:33 +0000 with message-id <e1nspfp-000bw4...@fasolo.debian.org> and subject line Bug#1011144: fixed in nvidia-graphics-drivers-tesla-450 450.191.01-1 has caused the Debian Bug report #1011144, regarding nvidia-graphics-drivers-tesla-450: CVE-2022-28181, CVE-2022-28185, CVE-2022-28192 to be marked as done.
This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 1011144: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1011144 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems
--- Begin Message ---Source: nvidia-graphics-drivers Severity: serious Tags: security upstream Control: clone -1 -2 -3 -4 -5 -6 -7 -8 Control: reassign -2 src:nvidia-graphics-drivers-legacy-340xx 340.76-6 Control: retitle -2 nvidia-graphics-drivers-legacy-340xx: CVE-2022-28181, CVE-2022-28185 Control: tag -2 + wontfix Control: reassign -3 src:nvidia-graphics-drivers-legacy-390xx 390.48-4 Control: retitle -3 nvidia-graphics-drivers-legacy-390xx: CVE-2022-28181, CVE-2022-28185 Control: reassign -4 src:nvidia-graphics-drivers-tesla-418 418.87.01-1 Control: retitle -4 nvidia-graphics-drivers-tesla-418: CVE-2022-28181, CVE-2022-28185, CVE-2022-28192 Control: tag -4 + wontfix Control: reassign -5 src:nvidia-graphics-drivers-tesla-450 450.51.05-1 Control: retitle -5 nvidia-graphics-drivers-tesla-450: CVE-2022-28181, CVE-2022-28185, CVE-2022-28192 Control: reassign -6 src:nvidia-graphics-drivers-tesla-460 460.32.03-1 Control: retitle -6 nvidia-graphics-drivers-tesla-460: CVE-2022-28181, CVE-2022-28183, CVE-2022-28184, CVE-2022-28185, CVE-2022-28191, CVE-2022-28192 Control: tag -6 + wontfix Control: reassign -7 src:nvidia-graphics-drivers-tesla-470 470.57.02-1 Control: retitle -7 nvidia-graphics-drivers-tesla-470: CVE-2022-28181, CVE-2022-28183, CVE-2022-28184, CVE-2022-28185, CVE-2022-28191, CVE-2022-28192 Control: reassign -8 src:nvidia-graphics-drivers-tesla-510 510.47.03-1 Control: retitle -8 nvidia-graphics-drivers-tesla-510: CVE-2022-28181, CVE-2022-28183, CVE-2022-28184, CVE-2022-28185, CVE-2022-28191, CVE-2022-28192 Control: found -1 340.24-1 Control: found -1 343.22-1 Control: found -1 396.18-1 Control: found -1 430.14-1 Control: found -1 455.23.04-1 Control: found -1 465.24.02-1 Control: found -1 495.44-1 https://nvidia.custhelp.com/app/answers/detail/a_id/5353 CVE-2022-28181 NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability in the kernel mode layer, where an unprivileged regular user on the network can cause an out-of-bounds write through a specially crafted shader, which may lead to code execution, denial of service, escalation of privileges, information disclosure, and data tampering. The scope of the impact may extend to other components. CVE-2022-28183 NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability in the kernel mode layer, where an unprivileged regular user can cause an out-of-bounds read, which may lead to denial of service and information disclosure. CVE-2022-28184 NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgkDdiEscape, where an unprivileged regular user can access administrator- privileged registers, which may lead to denial of service, information disclosure, and data tampering. CVE-2022-28185 NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability in the ECC layer, where an unprivileged regular user can cause an out-of-bounds write, which may lead to denial of service and data tampering. CVE-2022-28191 NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager (nvidia.ko), where uncontrolled resource consumption can be triggered by an unprivileged regular user, which may lead to denial of service. CVE-2022-28192 NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager (nvidia.ko), where it may lead to a use-after-free, which in turn may cause denial of service. This attack is complex to carry out because the attacker needs to have control over freeing some host side resources out of sequence, which requires elevated privileges. Driver Branch CVE IDs Addressed R510 and R470 CVE-2022-28181, CVE-2022-28183, CVE-2022-28184, CVE-2022-28185, CVE-2022-28191, CVE-2022-28192 R450 CVE-2022-28181, CVE-2022-28185, CVE-2022-28192 R390 CVE-2022-28181, CVE-2022-28185 Andreas
--- End Message ---
--- Begin Message ---Source: nvidia-graphics-drivers-tesla-450 Source-Version: 450.191.01-1 Done: Andreas Beckmann <a...@debian.org> We believe that the bug you reported is fixed in the latest version of nvidia-graphics-drivers-tesla-450, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to 1011...@bugs.debian.org, and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Andreas Beckmann <a...@debian.org> (supplier of updated nvidia-graphics-drivers-tesla-450 package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing ftpmas...@ftp-master.debian.org) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Sun, 22 May 2022 18:48:35 +0200 Source: nvidia-graphics-drivers-tesla-450 Architecture: source Version: 450.191.01-1 Distribution: unstable Urgency: medium Maintainer: Debian NVIDIA Maintainers <pkg-nvidia-de...@lists.alioth.debian.org> Changed-By: Andreas Beckmann <a...@debian.org> Closes: 1011144 Changes: nvidia-graphics-drivers-tesla-450 (450.191.01-1) unstable; urgency=medium . * New upstream Tesla release 450.191.01 (2022-05-16). * Fixed CVE-2022-28181, CVE-2022-28185, CVE-2022-28192. (Closes: #1011144) https://nvidia.custhelp.com/app/answers/detail/a_id/5353 . [ Andreas Beckmann ] * Refresh patches. * Bump Standards-Version to 4.6.1. No changes needed. Checksums-Sha1: 0cafbf66d5d5b095263d67ec8f8420708071cfa5 7439 nvidia-graphics-drivers-tesla-450_450.191.01-1.dsc 9aa7858f023993697daaa855447583d91086789a 140957751 nvidia-graphics-drivers-tesla-450_450.191.01.orig-amd64.tar.gz e4078a991a8e9633d71d096e71ce738af6f43737 80325332 nvidia-graphics-drivers-tesla-450_450.191.01.orig-arm64.tar.gz 4bc45bef7a89005201dce966ab1817ee6e6af8b4 40991003 nvidia-graphics-drivers-tesla-450_450.191.01.orig-ppc64el.tar.gz 93ce8fdbfd90b5458750da5a648a9addbeb6b620 140 nvidia-graphics-drivers-tesla-450_450.191.01.orig.tar.gz 08b9602cbf189b925df117525bc23cf216081702 201072 nvidia-graphics-drivers-tesla-450_450.191.01-1.debian.tar.xz 50356d9ae48216b50557d26e0d291ad7aae07d52 7885 nvidia-graphics-drivers-tesla-450_450.191.01-1_source.buildinfo Checksums-Sha256: 85298a1956f5f42c524fe59caa063f7bd7de1df78c4dc8bfc07c6eb513e41779 7439 nvidia-graphics-drivers-tesla-450_450.191.01-1.dsc 9fca5819a0dce69328f80431be00f09b7d23a0fa6120231bb6d57d2a5a7d8159 140957751 nvidia-graphics-drivers-tesla-450_450.191.01.orig-amd64.tar.gz ad5f24c890c2e76b59b44ca0494d28d77d92547ca1d36fdcf5284d11fccc5aa6 80325332 nvidia-graphics-drivers-tesla-450_450.191.01.orig-arm64.tar.gz fc6878d1956d0b00cbb787dba4a176ccf44378b8dd79c0fa797feb3b63ae8ab9 40991003 nvidia-graphics-drivers-tesla-450_450.191.01.orig-ppc64el.tar.gz 6f9597525ee4154bd578044c15c3be08395466ac22b3a755e338d360f25c15d0 140 nvidia-graphics-drivers-tesla-450_450.191.01.orig.tar.gz b59b546fe8db10574deaf2b87e19bc0f59be66df231234e879db9f52ef6eb3f5 201072 nvidia-graphics-drivers-tesla-450_450.191.01-1.debian.tar.xz d17a58c374f6621766d4fae694b2f21dbfaf2dba6c2f668e865d2bf1954926e7 7885 nvidia-graphics-drivers-tesla-450_450.191.01-1_source.buildinfo Files: 0f27275b1d51097610d7bb34898115cb 7439 non-free/libs optional nvidia-graphics-drivers-tesla-450_450.191.01-1.dsc e7c36f91004e983ff6c36d94145b5b01 140957751 non-free/libs optional nvidia-graphics-drivers-tesla-450_450.191.01.orig-amd64.tar.gz 6ababee87e385383f3a1265a33b2808f 80325332 non-free/libs optional nvidia-graphics-drivers-tesla-450_450.191.01.orig-arm64.tar.gz ba94cc3859c5cbd7672c1ac635ecae8e 40991003 non-free/libs optional nvidia-graphics-drivers-tesla-450_450.191.01.orig-ppc64el.tar.gz a7de755edbf4e86ea16a96ab4a704d1f 140 non-free/libs optional nvidia-graphics-drivers-tesla-450_450.191.01.orig.tar.gz 27df5d0330941e2d3fd4098c9c9be0cb 201072 non-free/libs optional nvidia-graphics-drivers-tesla-450_450.191.01-1.debian.tar.xz 92341e8b923d410233e8377b2b234b0a 7885 non-free/libs optional nvidia-graphics-drivers-tesla-450_450.191.01-1_source.buildinfo -----BEGIN PGP SIGNATURE----- iQJEBAEBCAAuFiEE6/MKMKjZxjvaRMaUX7M/k1np7QgFAmKKba8QHGFuYmVAZGVi aWFuLm9yZwAKCRBfsz+TWentCLxMEACGUPLUA8F6EZp3xoUst/T+JQRT42BKAmLh lEgVy4GQehwCiqFkA6xCG6cwYwDLO7yfSNRptGYuDOVJlda8JUpFobdLtRibJ3dP 1paHccnq+WSUrmtFBcAtgsPEXrW4apHRDmoDzyFMYHKgm4K+tUfByYmHSlnZnZij x37h2YkW9j9LVPYEMMI+HnTsQnqUiv5F0TPhS/Sl92RadQqQiCR+9l7cXc1hCI2z 9ChswPl+adqIfMNZ6T77VI9N2KRf14GJUFnRTf3EDSeQYHUqix3rMB+lUgkcV+zr h6Y+LcoVhQpkDnSk9DznufeYS30/gRYLUEkflSnnOmfvIsYZpIJULIHJkLP591/e ost0yF+6SqwcqqSgnh3HTbqd7DTOf42NWxoOgyUkI1dMmnxC7Ev1uLiZNF6aZ/Qd tayzpVGPf9IT/JyzWLxDmAdx87OmykRdCVxGSgEQHOxc4LAKN7jwLGHjCEoFzcol +5ksBYklNOx+AxvSUeFTRwg2QFu/KZEol8WrY25HbUEcnJOlwXSAmTeQEGrpB8id y5tqlhkWKcoMSKadAUolDyy7CtDOsTU5r5rtuUAWUSVf7eCT9JASVak1jZy2kGcV /NJE9jcz1KxGVv04NMKflKw0RAnJAHkBUr1MVnJ+8aWRbd45kpd1kmoG/xpuuKts Im9+fNeKiA== =MuOq -----END PGP SIGNATURE-----
--- End Message ---
