Your message dated Wed, 25 May 2022 19:39:04 +0000 with message-id <e1ntwqw-000cbs...@fasolo.debian.org> and subject line Bug#1011147: fixed in nvidia-graphics-drivers-tesla-510 510.73.08-1 has caused the Debian Bug report #1011147, regarding nvidia-graphics-drivers-tesla-510: CVE-2022-28181, CVE-2022-28183, CVE-2022-28184, CVE-2022-28185, CVE-2022-28191, CVE-2022-28192 to be marked as done.
This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 1011147: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1011147 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems
--- Begin Message ---Source: nvidia-graphics-drivers Severity: serious Tags: security upstream Control: clone -1 -2 -3 -4 -5 -6 -7 -8 Control: reassign -2 src:nvidia-graphics-drivers-legacy-340xx 340.76-6 Control: retitle -2 nvidia-graphics-drivers-legacy-340xx: CVE-2022-28181, CVE-2022-28185 Control: tag -2 + wontfix Control: reassign -3 src:nvidia-graphics-drivers-legacy-390xx 390.48-4 Control: retitle -3 nvidia-graphics-drivers-legacy-390xx: CVE-2022-28181, CVE-2022-28185 Control: reassign -4 src:nvidia-graphics-drivers-tesla-418 418.87.01-1 Control: retitle -4 nvidia-graphics-drivers-tesla-418: CVE-2022-28181, CVE-2022-28185, CVE-2022-28192 Control: tag -4 + wontfix Control: reassign -5 src:nvidia-graphics-drivers-tesla-450 450.51.05-1 Control: retitle -5 nvidia-graphics-drivers-tesla-450: CVE-2022-28181, CVE-2022-28185, CVE-2022-28192 Control: reassign -6 src:nvidia-graphics-drivers-tesla-460 460.32.03-1 Control: retitle -6 nvidia-graphics-drivers-tesla-460: CVE-2022-28181, CVE-2022-28183, CVE-2022-28184, CVE-2022-28185, CVE-2022-28191, CVE-2022-28192 Control: tag -6 + wontfix Control: reassign -7 src:nvidia-graphics-drivers-tesla-470 470.57.02-1 Control: retitle -7 nvidia-graphics-drivers-tesla-470: CVE-2022-28181, CVE-2022-28183, CVE-2022-28184, CVE-2022-28185, CVE-2022-28191, CVE-2022-28192 Control: reassign -8 src:nvidia-graphics-drivers-tesla-510 510.47.03-1 Control: retitle -8 nvidia-graphics-drivers-tesla-510: CVE-2022-28181, CVE-2022-28183, CVE-2022-28184, CVE-2022-28185, CVE-2022-28191, CVE-2022-28192 Control: found -1 340.24-1 Control: found -1 343.22-1 Control: found -1 396.18-1 Control: found -1 430.14-1 Control: found -1 455.23.04-1 Control: found -1 465.24.02-1 Control: found -1 495.44-1 https://nvidia.custhelp.com/app/answers/detail/a_id/5353 CVE-2022-28181 NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability in the kernel mode layer, where an unprivileged regular user on the network can cause an out-of-bounds write through a specially crafted shader, which may lead to code execution, denial of service, escalation of privileges, information disclosure, and data tampering. The scope of the impact may extend to other components. CVE-2022-28183 NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability in the kernel mode layer, where an unprivileged regular user can cause an out-of-bounds read, which may lead to denial of service and information disclosure. CVE-2022-28184 NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgkDdiEscape, where an unprivileged regular user can access administrator- privileged registers, which may lead to denial of service, information disclosure, and data tampering. CVE-2022-28185 NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability in the ECC layer, where an unprivileged regular user can cause an out-of-bounds write, which may lead to denial of service and data tampering. CVE-2022-28191 NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager (nvidia.ko), where uncontrolled resource consumption can be triggered by an unprivileged regular user, which may lead to denial of service. CVE-2022-28192 NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager (nvidia.ko), where it may lead to a use-after-free, which in turn may cause denial of service. This attack is complex to carry out because the attacker needs to have control over freeing some host side resources out of sequence, which requires elevated privileges. Driver Branch CVE IDs Addressed R510 and R470 CVE-2022-28181, CVE-2022-28183, CVE-2022-28184, CVE-2022-28185, CVE-2022-28191, CVE-2022-28192 R450 CVE-2022-28181, CVE-2022-28185, CVE-2022-28192 R390 CVE-2022-28181, CVE-2022-28185 Andreas
--- End Message ---
--- Begin Message ---Source: nvidia-graphics-drivers-tesla-510 Source-Version: 510.73.08-1 Done: Andreas Beckmann <a...@debian.org> We believe that the bug you reported is fixed in the latest version of nvidia-graphics-drivers-tesla-510, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to 1011...@bugs.debian.org, and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Andreas Beckmann <a...@debian.org> (supplier of updated nvidia-graphics-drivers-tesla-510 package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing ftpmas...@ftp-master.debian.org) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Wed, 25 May 2022 21:14:43 +0200 Source: nvidia-graphics-drivers-tesla-510 Architecture: source Version: 510.73.08-1 Distribution: experimental Urgency: medium Maintainer: Debian NVIDIA Maintainers <pkg-nvidia-de...@lists.alioth.debian.org> Changed-By: Andreas Beckmann <a...@debian.org> Closes: 1011147 Changes: nvidia-graphics-drivers-tesla-510 (510.73.08-1) experimental; urgency=medium . * New upstream Tesla release 510.73.08 (2022-05-23). * New upstream production branch release 510.73.05 (2022-05-16). * Fixed CVE-2022-28181, CVE-2022-28183, CVE-2022-28184, CVE-2022-28185, CVE-2022-28191, CVE-2022-28192. (Closes: #1011147) https://nvidia.custhelp.com/app/answers/detail/a_id/5353 - Added a new configuration option for NVIDIA NGX to allow disabling the DSO signature check. See the "NGX" chapter of the README for more information. * New upstream production branch release 510.68.02 (2022-04-26). Checksums-Sha1: 0367ec36e53f61d0ef95647b13167bc8312fb1e3 7473 nvidia-graphics-drivers-tesla-510_510.73.08-1.dsc 427542922f6c05c5a65ece31ca7513a5c4833204 329422674 nvidia-graphics-drivers-tesla-510_510.73.08.orig-amd64.tar.gz 01015694e470e362bea61bf910cd05541250ec3b 211513122 nvidia-graphics-drivers-tesla-510_510.73.08.orig-arm64.tar.gz 777b2b8007c1c4a477a645f8fcf74cea25770280 72702948 nvidia-graphics-drivers-tesla-510_510.73.08.orig-ppc64el.tar.gz afdcbb0aa6bbb437a4413390d9225d94c76c805f 140 nvidia-graphics-drivers-tesla-510_510.73.08.orig.tar.gz 6cf2693e699ce07058dcd9505479e7c5f2d658c1 211936 nvidia-graphics-drivers-tesla-510_510.73.08-1.debian.tar.xz a0ae2cb49a674bd96e99fd72594214b2c9120227 5595 nvidia-graphics-drivers-tesla-510_510.73.08-1_source.buildinfo Checksums-Sha256: 18abd17a9071f6948668d2f8bae1250b07cfc577d76f37784304835a060fa247 7473 nvidia-graphics-drivers-tesla-510_510.73.08-1.dsc b95588672e150a661965c9955887d10c026251626c77558389ff668ca1ba0585 329422674 nvidia-graphics-drivers-tesla-510_510.73.08.orig-amd64.tar.gz 677e4ae79299edf585ceb80d1e0cba7e7cf0c305274ebdb50913e0d76d952dcc 211513122 nvidia-graphics-drivers-tesla-510_510.73.08.orig-arm64.tar.gz d267904a5288d13023b03e2cfd6f9b925ed9f9a88baefd084e7b0d2f09527402 72702948 nvidia-graphics-drivers-tesla-510_510.73.08.orig-ppc64el.tar.gz 6d7d0702412f8835009d35b8e245a84579956501ac36723806fec61d3b3d7817 140 nvidia-graphics-drivers-tesla-510_510.73.08.orig.tar.gz 86de0c0b443f4d7c0bb3f6cbe1939f07f341fa2357e8ea7e9d98acae24e53714 211936 nvidia-graphics-drivers-tesla-510_510.73.08-1.debian.tar.xz c44ede93397145366d7c3cd1d9b0e2ca6bd02f6562540affd8813c187ad3b19d 5595 nvidia-graphics-drivers-tesla-510_510.73.08-1_source.buildinfo Files: f23a5e1118c2bc2c729ec0db96f6dccf 7473 non-free/libs optional nvidia-graphics-drivers-tesla-510_510.73.08-1.dsc d2180d9c4e506702259428c9c76d9e9d 329422674 non-free/libs optional nvidia-graphics-drivers-tesla-510_510.73.08.orig-amd64.tar.gz ece9f2ab18c8914b45a3c5cc0786b270 211513122 non-free/libs optional nvidia-graphics-drivers-tesla-510_510.73.08.orig-arm64.tar.gz 2f1f0c075b03ca2ff102e4f4e4c06d5d 72702948 non-free/libs optional nvidia-graphics-drivers-tesla-510_510.73.08.orig-ppc64el.tar.gz 7d2d3af3be6b256b59a1ce34f7939e3e 140 non-free/libs optional nvidia-graphics-drivers-tesla-510_510.73.08.orig.tar.gz 1772cd682dfc21f1c3a24d460c7261ca 211936 non-free/libs optional nvidia-graphics-drivers-tesla-510_510.73.08-1.debian.tar.xz 7ff9d4e60f8a8277f531c5073ed1a878 5595 non-free/libs optional nvidia-graphics-drivers-tesla-510_510.73.08-1_source.buildinfo -----BEGIN PGP SIGNATURE----- iQJEBAEBCAAuFiEE6/MKMKjZxjvaRMaUX7M/k1np7QgFAmKOgJMQHGFuYmVAZGVi aWFuLm9yZwAKCRBfsz+TWentCCt4D/9dS3vmShp0v2VDQNHkIeiE7fls/SwcenNu NrgL0wwiWqTBcFmF7pGb3C+7w1qnylvWGnnjjq/ndhet7K5D+7J5Zo+al0SJxHQe ya8O4AUnkAf2ojdIWPwLNYQyx+mPEjmFElXx0/bIHLqY7/8O15ESXLXQMdZG+upT sDpdJ5TyQqB1lJUJTCVSzZkN+f7XFKueU0g4BB3CUv0NlZwe9EI4eZMTSQjdt2eH LaY/UxDuo45uNbyb6BzSIiQfv+32lfPIBLbI10eiymgt4JXkhyISztkdCzHRYX0x S0PgqD0uJGhBoH5GygByw3TB9g6Yf0YNlOxFNUT0t2TeUkg0nxIL6f2xo5wUe421 GK0ePwT4QzQ962zgIrlcZ6qR/bIwVZo1nCgF84mT0vYKg6hBLoLrvjUPJnBzgSc9 cpZs2t8SSnGvz8T9V0S5GhWvZDXIUiZr+6yTJmt2iJkvw/p/MB0am/pDCgB+/iv2 1d5M/n9yTubg1eNBj4axf1KOXw8YaAEogmddjyAMYtudi2lCRFpXVHOlzT9bXeWi HISCNr5vRjPWVJWFLaxOeQR6w9neZU/VKuM/4R6kUCXOVfbgt6P+nPRJYlRoszim T4Fd6OE4PtgB1EeN57fysDZh2IElZhrnAK3GAFsaWrjrEewMY123mioGtvk83WSe /ZbHyXRrtg== =p7Yg -----END PGP SIGNATURE-----
--- End Message ---
