Bug#1055144: marked as done (nvidia-open-gpu-kernel-modules: CVE-2023-31022)

Debian Bug Tracking System Sun, 03 Dec 2023 09:06:24 -0800

Your message dated Sun, 03 Dec 2023 17:02:09 +0000
with message-id <e1r9pr7-008utt...@fasolo.debian.org>
and subject line Bug#1055144: fixed in nvidia-open-gpu-kernel-modules 
525.147.05-1~deb12u1
has caused the Debian Bug report #1055144,
regarding nvidia-open-gpu-kernel-modules: CVE-2023-31022
to be marked as done.


This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)


-- 
1055144: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1055144
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems

--- Begin Message ---

Source: nvidia-graphics-drivers
Severity: normal
Tags: security
X-Debbugs-Cc: Debian Security Team <t...@security.debian.org>
Control: clone -1 -2 -3 -4 -5 -6 -7 -8 -9
Control: reassign -2 src:nvidia-graphics-drivers-legacy-340xx 340.76-6
Control: retitle -2 nvidia-graphics-drivers-legacy-340xx: CVE-2023-31022
Control: tag -2 + wontfix
Control: reassign -3 src:nvidia-graphics-drivers-legacy-390xx 390.48-4
Control: retitle -3 nvidia-graphics-drivers-legacy-390xx: CVE-2023-31022
Control: tag -3 + wontfix
Control: reassign -4 src:nvidia-graphics-drivers-tesla-418 418.87.01-1
Control: retitle -4 nvidia-graphics-drivers-tesla-418: CVE-2023-31022
Control: tag -4 + wontfix
Control: reassign -5 src:nvidia-graphics-drivers-tesla-450 450.51.05-1
Control: retitle -5 nvidia-graphics-drivers-tesla-450: CVE-2023-31022
Control: tag -5 + wontfix
Control: reassign -6 src:nvidia-graphics-drivers-tesla-460 460.32.03-1
Control: retitle -6 nvidia-graphics-drivers-tesla-460: CVE-2023-31022
Control: tag -6 + wontfix
Control: close -6 460.106.00-3
Control: reassign -7 src:nvidia-graphics-drivers-tesla-470 470.57.02-1
Control: retitle -7 nvidia-graphics-drivers-tesla-470: CVE-2023-31022
Control: reassign -8 src:nvidia-graphics-drivers-tesla 510.85.02-1
Control: retitle -8 nvidia-graphics-drivers-tesla: CVE-2023-31022
Control: found -8 515.48.07-1
Control: found -8 525.60.13-1
Control: found -8 535.54.03-1
Control: reassign -9 src:nvidia-open-gpu-kernel-modules 515.43.04-1
Control: retitle -9 nvidia-open-gpu-kernel-modules: CVE-2023-31022
Control: found -9 520.56.06-1
Control: found -9 525.85.12-1
Control: found -9 530.30.02-1
Control: found -9 535.43.02-1
Control: found -9 545.23.06-1
Control: found -1 340.24-1
Control: found -1 343.22-1
Control: found -1 396.18-1
Control: found -1 430.14-1
Control: found -1 455.23.04-1
Control: found -1 465.24.02-1
Control: found -1 495.44-1
Control: found -1 515.48.07-1
Control: found -1 520.56.06-1
Control: found -1 525.53-1
Control: found -1 530.30.02-1
Control: found -1 535.43.02-1
Control: found -1 545.23.06-1

https://nvidia.custhelp.com/app/answers/detail/a_id/5491

CVE-2023-31022  NVIDIA GPU Display Driver for Windows and Linux contains
a vulnerability in the kernel mode layer, where a NULL-pointer
dereference may lead to denial of service.

Linux Driver Branch     CVE IDs Addressed
R545, R535, R525, R470  CVE-2023-31022

Driver Branch   Affected Driver Versions                        Updated Driver 
Version
R545            All driver versions prior to 545.29.02          545.29.02
R535            All driver versions prior to 535.129.03         535.129.03
R525            All driver versions prior to 525.147.05         525.147.05
R470            All driver versions prior to 470.223.02         470.223.02


Andreas

--- End Message ---

--- Begin Message ---

Source: nvidia-open-gpu-kernel-modules
Source-Version: 525.147.05-1~deb12u1
Done: Andreas Beckmann <a...@debian.org>

We believe that the bug you reported is fixed in the latest version of
nvidia-open-gpu-kernel-modules, which is due to be installed in the Debian FTP 
archive.

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to 1055...@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Andreas Beckmann <a...@debian.org> (supplier of updated 
nvidia-open-gpu-kernel-modules package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmas...@ftp-master.debian.org)


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Sun, 03 Dec 2023 12:31:14 +0100
Source: nvidia-open-gpu-kernel-modules
Architecture: source
Version: 525.147.05-1~deb12u1
Distribution: bookworm
Urgency: medium
Maintainer: Debian NVIDIA Maintainers <pkg-nvidia-de...@lists.alioth.debian.org>
Changed-By: Andreas Beckmann <a...@debian.org>
Closes: 1055144
Changes:
 nvidia-open-gpu-kernel-modules (525.147.05-1~deb12u1) bookworm; urgency=medium
 .
   * Rebuild for bookworm.
 .
 nvidia-open-gpu-kernel-modules (525.147.05-1) unstable; urgency=medium
 .
   * New upstream production branch release 525.147.05 (2023-10-31).
     * Fixed CVE-2023-31022.  (Closes: #1055144)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5491
   * Refresh patches.
   * Fix FTBFS with quilt 0.67.
 .
 nvidia-open-gpu-kernel-modules (525.125.06-2) unstable; urgency=medium
 .
   * Backport get_user_pages changes from 535.86.05 to fix kernel module build
     for Linux 6.5.
Checksums-Sha1:
 28eebd487da90071faff51b8b5b5f699bba1c28a 2761 
nvidia-open-gpu-kernel-modules_525.147.05-1~deb12u1.dsc
 15a967c0a9279244c56788a8a855bff7732a5f2a 19080 
nvidia-open-gpu-kernel-modules_525.147.05-1~deb12u1.debian.tar.xz
 ba13bd9a564bae0dc97c79838a9122f0d53bd0ab 5788 
nvidia-open-gpu-kernel-modules_525.147.05-1~deb12u1_source.buildinfo
Checksums-Sha256:
 45693087b024aac407ef414bd5cf455c8dd9a1710cf88bcda1b3258a26e59ccf 2761 
nvidia-open-gpu-kernel-modules_525.147.05-1~deb12u1.dsc
 bfe1a9b5aa393e8f13676fdd6199a5c1c4361552d783d4c1c9b7daa35a9579d3 19080 
nvidia-open-gpu-kernel-modules_525.147.05-1~deb12u1.debian.tar.xz
 3ae06673507719554dfd97681993bb3b59775a1a601bb76dd46c59706b21df82 5788 
nvidia-open-gpu-kernel-modules_525.147.05-1~deb12u1_source.buildinfo
Files:
 e0baf60d9a38e34c58b1c0424906a38c 2761 contrib/kernel optional 
nvidia-open-gpu-kernel-modules_525.147.05-1~deb12u1.dsc
 821fe2cbd0acfc805f87c71bfde9a4cd 19080 contrib/kernel optional 
nvidia-open-gpu-kernel-modules_525.147.05-1~deb12u1.debian.tar.xz
 2789b9d2d96acefd7de7e87415befd84 5788 contrib/kernel optional 
nvidia-open-gpu-kernel-modules_525.147.05-1~deb12u1_source.buildinfo

-----BEGIN PGP SIGNATURE-----
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=MIv8
-----END PGP SIGNATURE-----

--- End Message ---

Bug#1055144: marked as done (nvidia-open-gpu-kernel-modules: CVE-2023-31022)

Reply via email to