Bug#1055136: marked as done (nvidia-graphics-drivers: CVE-2023-31022)

Debian Bug Tracking System Mon, 18 Dec 2023 10:33:38 -0800

Your message dated Mon, 18 Dec 2023 18:32:42 +0000
with message-id <e1rfipy-008ino...@fasolo.debian.org>
and subject line Bug#1055136: fixed in nvidia-graphics-drivers 470.223.02-1
has caused the Debian Bug report #1055136,
regarding nvidia-graphics-drivers: CVE-2023-31022
to be marked as done.


This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)


-- 
1055136: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1055136
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems

--- Begin Message ---

Source: nvidia-graphics-drivers
Severity: normal
Tags: security
X-Debbugs-Cc: Debian Security Team <t...@security.debian.org>
Control: clone -1 -2 -3 -4 -5 -6 -7 -8 -9
Control: reassign -2 src:nvidia-graphics-drivers-legacy-340xx 340.76-6
Control: retitle -2 nvidia-graphics-drivers-legacy-340xx: CVE-2023-31022
Control: tag -2 + wontfix
Control: reassign -3 src:nvidia-graphics-drivers-legacy-390xx 390.48-4
Control: retitle -3 nvidia-graphics-drivers-legacy-390xx: CVE-2023-31022
Control: tag -3 + wontfix
Control: reassign -4 src:nvidia-graphics-drivers-tesla-418 418.87.01-1
Control: retitle -4 nvidia-graphics-drivers-tesla-418: CVE-2023-31022
Control: tag -4 + wontfix
Control: reassign -5 src:nvidia-graphics-drivers-tesla-450 450.51.05-1
Control: retitle -5 nvidia-graphics-drivers-tesla-450: CVE-2023-31022
Control: tag -5 + wontfix
Control: reassign -6 src:nvidia-graphics-drivers-tesla-460 460.32.03-1
Control: retitle -6 nvidia-graphics-drivers-tesla-460: CVE-2023-31022
Control: tag -6 + wontfix
Control: close -6 460.106.00-3
Control: reassign -7 src:nvidia-graphics-drivers-tesla-470 470.57.02-1
Control: retitle -7 nvidia-graphics-drivers-tesla-470: CVE-2023-31022
Control: reassign -8 src:nvidia-graphics-drivers-tesla 510.85.02-1
Control: retitle -8 nvidia-graphics-drivers-tesla: CVE-2023-31022
Control: found -8 515.48.07-1
Control: found -8 525.60.13-1
Control: found -8 535.54.03-1
Control: reassign -9 src:nvidia-open-gpu-kernel-modules 515.43.04-1
Control: retitle -9 nvidia-open-gpu-kernel-modules: CVE-2023-31022
Control: found -9 520.56.06-1
Control: found -9 525.85.12-1
Control: found -9 530.30.02-1
Control: found -9 535.43.02-1
Control: found -9 545.23.06-1
Control: found -1 340.24-1
Control: found -1 343.22-1
Control: found -1 396.18-1
Control: found -1 430.14-1
Control: found -1 455.23.04-1
Control: found -1 465.24.02-1
Control: found -1 495.44-1
Control: found -1 515.48.07-1
Control: found -1 520.56.06-1
Control: found -1 525.53-1
Control: found -1 530.30.02-1
Control: found -1 535.43.02-1
Control: found -1 545.23.06-1

https://nvidia.custhelp.com/app/answers/detail/a_id/5491

CVE-2023-31022  NVIDIA GPU Display Driver for Windows and Linux contains
a vulnerability in the kernel mode layer, where a NULL-pointer
dereference may lead to denial of service.

Linux Driver Branch     CVE IDs Addressed
R545, R535, R525, R470  CVE-2023-31022

Driver Branch   Affected Driver Versions                        Updated Driver 
Version
R545            All driver versions prior to 545.29.02          545.29.02
R535            All driver versions prior to 535.129.03         535.129.03
R525            All driver versions prior to 525.147.05         525.147.05
R470            All driver versions prior to 470.223.02         470.223.02


Andreas

--- End Message ---

--- Begin Message ---

Source: nvidia-graphics-drivers
Source-Version: 470.223.02-1
Done: Andreas Beckmann <a...@debian.org>

We believe that the bug you reported is fixed in the latest version of
nvidia-graphics-drivers, which is due to be installed in the Debian FTP archive.

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to 1055...@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Andreas Beckmann <a...@debian.org> (supplier of updated nvidia-graphics-drivers 
package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmas...@ftp-master.debian.org)


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Fri, 17 Nov 2023 17:38:12 +0100
Source: nvidia-graphics-drivers
Architecture: source
Version: 470.223.02-1
Distribution: bullseye
Urgency: medium
Maintainer: Debian NVIDIA Maintainers <pkg-nvidia-de...@lists.alioth.debian.org>
Changed-By: Andreas Beckmann <a...@debian.org>
Closes: 1052069 1055136 1055503
Changes:
 nvidia-graphics-drivers (470.223.02-1) bullseye; urgency=medium
 .
   * New upstream long term support branch release 470.223.02 (2023-10-31).
     * Fixed CVE-2023-31022.  (Closes: #1055136)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5491
     - Fixed a bug which caused incorrect reporting of presentation
       times when using the VK_NV_present_barrier Vulkan extension.
     * Improved compatibility with recent Linux kernels.
 .
   [ Andreas Beckmann ]
   * Refresh patches.
   * Upload to bullseye.
 .
 nvidia-graphics-drivers (470.199.02-4) UNRELEASED; urgency=medium
 .
   * Refuse to load module if IBT is enabled.  (Closes: #1052069)
   * Switch suggestion from obsolete vulkan-utils to vulkan-tools
     (525.125.06-3).  (Closes: #1055503)
 .
 nvidia-graphics-drivers (470.199.02-3) UNRELEASED; urgency=medium
 .
   * Revert backport of pin_user_pages changes.
   * Backport drm_gem_prime_handle_to_fd changes from 470.223.02 to fix kernel
     module build for Linux 6.6.
 .
 nvidia-graphics-drivers (470.199.02-2) UNRELEASED; urgency=medium
 .
   * Backport get_user_pages and pin_user_pages changes from 520.56.06,
     525.53 and 535.86.05 to fix kernel module build for Linux 6.5.
Checksums-Sha1:
 d3294aecec40f82b402911e730dfc8b00f0933bf 7104 
nvidia-graphics-drivers_470.223.02-1.dsc
 5112453645f14eb0af14c6b7c5a3e6fb4202fc95 270544063 
nvidia-graphics-drivers_470.223.02.orig-amd64.tar.gz
 4d425275adfb8ad0cf3a322312fad2c545b50211 183746396 
nvidia-graphics-drivers_470.223.02.orig-arm64.tar.gz
 e3bb47d519305a4585d92d5885991cf0ca92badd 139 
nvidia-graphics-drivers_470.223.02.orig.tar.gz
 6446b30ff4fe21dd4284080d3db348dc62bb0398 210540 
nvidia-graphics-drivers_470.223.02-1.debian.tar.xz
 94456f248cb8785e9438f100b94a6f96a959cff2 8478 
nvidia-graphics-drivers_470.223.02-1_source.buildinfo
Checksums-Sha256:
 3104b09dfcc77381d3737330fb563f95d833c976ceb1d166536ce08afa7d44bb 7104 
nvidia-graphics-drivers_470.223.02-1.dsc
 487fdded55b32d445af6fe26599d59103263db871ef77d7e4123ae78f175e40b 270544063 
nvidia-graphics-drivers_470.223.02.orig-amd64.tar.gz
 5cbb21d92a9222b94f23ed7ae7fb325117480a4cc0df5e849046fc052a0248db 183746396 
nvidia-graphics-drivers_470.223.02.orig-arm64.tar.gz
 e6737605348b637131bfb206876d5b27cfcce79d60a76e0b4055a9cf75d48be8 139 
nvidia-graphics-drivers_470.223.02.orig.tar.gz
 9f95eb46e7967c796b30b6037641ce1d624170ac0ec95b8c4527e667d44fecbd 210540 
nvidia-graphics-drivers_470.223.02-1.debian.tar.xz
 e945aa6c941f61fde864de835ff3171d87686ecd9cb67d52e3a350b3f39cdf33 8478 
nvidia-graphics-drivers_470.223.02-1_source.buildinfo
Files:
 74ed5fce1d306ed2b2687d36aeb2fe14 7104 non-free/libs optional 
nvidia-graphics-drivers_470.223.02-1.dsc
 9c7b96439ca346826bb330369dc56b92 270544063 non-free/libs optional 
nvidia-graphics-drivers_470.223.02.orig-amd64.tar.gz
 6503e132fc2a50e70a9eba15b77af226 183746396 non-free/libs optional 
nvidia-graphics-drivers_470.223.02.orig-arm64.tar.gz
 aae90a418b6be1fd8355e2e0c112187e 139 non-free/libs optional 
nvidia-graphics-drivers_470.223.02.orig.tar.gz
 668b118b83d6ec361867c2831b1d9c29 210540 non-free/libs optional 
nvidia-graphics-drivers_470.223.02-1.debian.tar.xz
 63218f3eead1df1762e7cc1241cfa4a6 8478 non-free/libs optional 
nvidia-graphics-drivers_470.223.02-1_source.buildinfo

-----BEGIN PGP SIGNATURE-----
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=B9rh
-----END PGP SIGNATURE-----

--- End Message ---

Bug#1055136: marked as done (nvidia-graphics-drivers: CVE-2023-31022)

Reply via email to