Bug#1055144: marked as done (nvidia-open-gpu-kernel-modules: CVE-2023-31022)

Debian Bug Tracking System Wed, 27 Mar 2024 03:57:21 -0700

Your message dated Wed, 27 Mar 2024 10:54:38 +0000
with message-id <e1rpqvw-005xri...@fasolo.debian.org>
and subject line Bug#1055144: fixed in nvidia-open-gpu-kernel-modules 
535.129.03-1
has caused the Debian Bug report #1055144,
regarding nvidia-open-gpu-kernel-modules: CVE-2023-31022
to be marked as done.


This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)


-- 
1055144: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1055144
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems

--- Begin Message ---

Source: nvidia-graphics-drivers
Severity: normal
Tags: security
X-Debbugs-Cc: Debian Security Team <t...@security.debian.org>
Control: clone -1 -2 -3 -4 -5 -6 -7 -8 -9
Control: reassign -2 src:nvidia-graphics-drivers-legacy-340xx 340.76-6
Control: retitle -2 nvidia-graphics-drivers-legacy-340xx: CVE-2023-31022
Control: tag -2 + wontfix
Control: reassign -3 src:nvidia-graphics-drivers-legacy-390xx 390.48-4
Control: retitle -3 nvidia-graphics-drivers-legacy-390xx: CVE-2023-31022
Control: tag -3 + wontfix
Control: reassign -4 src:nvidia-graphics-drivers-tesla-418 418.87.01-1
Control: retitle -4 nvidia-graphics-drivers-tesla-418: CVE-2023-31022
Control: tag -4 + wontfix
Control: reassign -5 src:nvidia-graphics-drivers-tesla-450 450.51.05-1
Control: retitle -5 nvidia-graphics-drivers-tesla-450: CVE-2023-31022
Control: tag -5 + wontfix
Control: reassign -6 src:nvidia-graphics-drivers-tesla-460 460.32.03-1
Control: retitle -6 nvidia-graphics-drivers-tesla-460: CVE-2023-31022
Control: tag -6 + wontfix
Control: close -6 460.106.00-3
Control: reassign -7 src:nvidia-graphics-drivers-tesla-470 470.57.02-1
Control: retitle -7 nvidia-graphics-drivers-tesla-470: CVE-2023-31022
Control: reassign -8 src:nvidia-graphics-drivers-tesla 510.85.02-1
Control: retitle -8 nvidia-graphics-drivers-tesla: CVE-2023-31022
Control: found -8 515.48.07-1
Control: found -8 525.60.13-1
Control: found -8 535.54.03-1
Control: reassign -9 src:nvidia-open-gpu-kernel-modules 515.43.04-1
Control: retitle -9 nvidia-open-gpu-kernel-modules: CVE-2023-31022
Control: found -9 520.56.06-1
Control: found -9 525.85.12-1
Control: found -9 530.30.02-1
Control: found -9 535.43.02-1
Control: found -9 545.23.06-1
Control: found -1 340.24-1
Control: found -1 343.22-1
Control: found -1 396.18-1
Control: found -1 430.14-1
Control: found -1 455.23.04-1
Control: found -1 465.24.02-1
Control: found -1 495.44-1
Control: found -1 515.48.07-1
Control: found -1 520.56.06-1
Control: found -1 525.53-1
Control: found -1 530.30.02-1
Control: found -1 535.43.02-1
Control: found -1 545.23.06-1

https://nvidia.custhelp.com/app/answers/detail/a_id/5491

CVE-2023-31022  NVIDIA GPU Display Driver for Windows and Linux contains
a vulnerability in the kernel mode layer, where a NULL-pointer
dereference may lead to denial of service.

Linux Driver Branch     CVE IDs Addressed
R545, R535, R525, R470  CVE-2023-31022

Driver Branch   Affected Driver Versions                        Updated Driver 
Version
R545            All driver versions prior to 545.29.02          545.29.02
R535            All driver versions prior to 535.129.03         535.129.03
R525            All driver versions prior to 525.147.05         525.147.05
R470            All driver versions prior to 470.223.02         470.223.02


Andreas

--- End Message ---

--- Begin Message ---

Source: nvidia-open-gpu-kernel-modules
Source-Version: 535.129.03-1
Done: Andreas Beckmann <a...@debian.org>

We believe that the bug you reported is fixed in the latest version of
nvidia-open-gpu-kernel-modules, which is due to be installed in the Debian FTP 
archive.

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to 1055...@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Andreas Beckmann <a...@debian.org> (supplier of updated 
nvidia-open-gpu-kernel-modules package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmas...@ftp-master.debian.org)


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Wed, 27 Mar 2024 11:14:40 +0100
Source: nvidia-open-gpu-kernel-modules
Architecture: source
Version: 535.129.03-1
Distribution: unstable
Urgency: medium
Maintainer: Debian NVIDIA Maintainers <pkg-nvidia-de...@lists.alioth.debian.org>
Changed-By: Andreas Beckmann <a...@debian.org>
Closes: 1055144
Changes:
 nvidia-open-gpu-kernel-modules (535.129.03-1) unstable; urgency=medium
 .
   * New upstream LTS and Tesla branch release 535.129.03 (2023-10-31).
     * Fixed CVE-2023-31022.  (Closes: #1055144)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5491
   * Sync with src:nvidia-graphics-drivers.
Checksums-Sha1:
 cb719ba3d1cfae9e1b3d79236e13e15a3e7a2ec0 2729 
nvidia-open-gpu-kernel-modules_535.129.03-1.dsc
 08359bfcc6cceb0e153d11cc4dee1399c8f94476 12498528 
nvidia-open-gpu-kernel-modules_535.129.03.orig.tar.xz
 8ec8229036ed247b34de2b22ea38be66e005393b 24064 
nvidia-open-gpu-kernel-modules_535.129.03-1.debian.tar.xz
 fb30f10be70f82a7b3a455622f4d5310fdfe1014 5772 
nvidia-open-gpu-kernel-modules_535.129.03-1_source.buildinfo
Checksums-Sha256:
 4fa67e9528fcab621970d76b177d4e7a2274eee98069847bcec5ee6419a71979 2729 
nvidia-open-gpu-kernel-modules_535.129.03-1.dsc
 0e250ff83e701ef6a07dfd70ff3989224e044d33205eea2dc4e4c5f46ef87373 12498528 
nvidia-open-gpu-kernel-modules_535.129.03.orig.tar.xz
 cbe500cd852acea04de21b7be3e32305e85b36d6cb2097874bb3ec7bbf631ec0 24064 
nvidia-open-gpu-kernel-modules_535.129.03-1.debian.tar.xz
 2c9bd80006677f9db71346b5d8eca82ae5a6d5460b12ea4043a05c032fdd1184 5772 
nvidia-open-gpu-kernel-modules_535.129.03-1_source.buildinfo
Files:
 da6ee2b376e88fb50642d6dafaccdf19 2729 contrib/kernel optional 
nvidia-open-gpu-kernel-modules_535.129.03-1.dsc
 ffea31394137259b3e6460ec03f9bd34 12498528 contrib/kernel optional 
nvidia-open-gpu-kernel-modules_535.129.03.orig.tar.xz
 1b277def12cda7bf5df26022475c3b40 24064 contrib/kernel optional 
nvidia-open-gpu-kernel-modules_535.129.03-1.debian.tar.xz
 2193cb7f5d9c16fc6f653bcfe27dacdc 5772 contrib/kernel optional 
nvidia-open-gpu-kernel-modules_535.129.03-1_source.buildinfo

-----BEGIN PGP SIGNATURE-----
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=Pd/e
-----END PGP SIGNATURE-----

pgpPmQv4jFoZt.pgp
Description: PGP signature

--- End Message ---

Bug#1055144: marked as done (nvidia-open-gpu-kernel-modules: CVE-2023-31022)

Reply via email to