Your message dated Fri, 14 Jun 2024 09:36:00 +0000
with message-id <e1si3lk-001jaq...@fasolo.debian.org>
and subject line Bug#1072792: fixed in nvidia-graphics-drivers 535.183.01-1
has caused the Debian Bug report #1072792,
regarding nvidia-graphics-drivers: CVE-2024-0090, CVE-2024-0091, CVE-2024-0092
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)
--
1072792: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1072792
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--- Begin Message ---
Source: nvidia-graphics-drivers
Severity: serious
Tags: security upstream
X-Debbugs-Cc: Debian Security Team <t...@security.debian.org>
Control: clone -1 -2 -3 -4 -5 -6 -7 -8 -9
Control: reassign -2 src:nvidia-graphics-drivers-legacy-340xx 340.76-6
Control: retitle -2 nvidia-graphics-drivers-legacy-340xx: CVE-2024-0090,
CVE-2024-0092
Control: tag -2 + wontfix
Control: reassign -3 src:nvidia-graphics-drivers-legacy-390xx 390.48-4
Control: retitle -3 nvidia-graphics-drivers-legacy-390xx: CVE-2024-0090,
CVE-2024-0092
Control: tag -3 + wontfix
Control: reassign -4 src:nvidia-graphics-drivers-tesla-418 418.87.01-1
Control: retitle -4 nvidia-graphics-drivers-tesla-418: CVE-2024-0090,
CVE-2024-0092
Control: tag -4 + wontfix
Control: reassign -5 src:nvidia-graphics-drivers-tesla-450 450.51.05-1
Control: retitle -5 nvidia-graphics-drivers-tesla-450: CVE-2024-0090,
CVE-2024-0092
Control: tag -5 + wontfix
Control: close -5 450.248.02-4
Control: reassign -6 src:nvidia-graphics-drivers-tesla-460 460.32.03-1
Control: retitle -6 nvidia-graphics-drivers-tesla-460: CVE-2024-0090,
CVE-2024-0092
Control: tag -6 + wontfix
Control: close -6 460.106.00-3
Control: reassign -7 src:nvidia-graphics-drivers-tesla-470 470.57.02-1
Control: retitle -7 nvidia-graphics-drivers-tesla-470: CVE-2024-0090,
CVE-2024-0092
Control: reassign -8 src:nvidia-graphics-drivers-tesla 510.85.02-1
Control: retitle -8 nvidia-graphics-drivers-tesla: CVE-2024-0090, CVE-2024-0092
Control: found -8 515.48.07-1
Control: found -8 525.60.13-1
Control: tag -8 + wontfix
Control: close -8 525.147.05-6
Control: reassign -9 src:nvidia-open-gpu-kernel-modules 515.43.04-1
Control: retitle -9 nvidia-open-gpu-kernel-modules: CVE-2024-0090,
CVE-2024-0091, CVE-2024-0092
Control: found -9 520.56.06-1
Control: found -9 525.85.12-1
Control: found -9 530.30.02-1
Control: found -9 535.43.02-1
Control: found -9 545.23.06-1
Control: found -9 550.40.07-1
Control: found -9 555.42.02-1
Control: found -1 340.24-1
Control: found -1 343.22-1
Control: found -1 396.18-1
Control: found -1 430.14-1
Control: found -1 455.23.04-1
Control: found -1 465.24.02-1
Control: found -1 495.44-1
Control: found -1 515.48.07-1
Control: found -1 520.56.06-1
Control: found -1 525.53-1
Control: found -1 530.30.02-1
Control: found -1 535.43.02-1
Control: found -1 545.23.06-1
Control: found -1 550.40.07-1
Control: found -1 555.42.02-1
https://nvidia.custhelp.com/app/answers/detail/a_id/5551
CVE-2024-0090 NVIDIA GPU driver for Windows and Linux contains a
vulnerability where a user can cause an out-of-bounds write. A
successful exploit of this vulnerability might lead to code execution,
denial of service, escalation of privileges, information disclosure, and
data tampering.
CVE-2024-0091 NVIDIA GPU Display Driver for Windows and Linux contains
a vulnerability where a user can cause an untrusted pointer dereference
by executing a driver API. A successful exploit of this vulnerability
might lead to denial of service, information disclosure, and data
tampering.
CVE-2024-0092 NVIDIA GPU Driver for Windows and Linux contains a
vulnerability where an improper check or improper handling of exception
conditions might lead to denial of service.
Linux Driver Branch CVE IDs Addressed
R555, R550 CVE-2024-0090, CVE-2024-0091, CVE-2024-0092
R535, R470 CVE-2024-0090, CVE-2024-0092
Driver Branch Affected Driver Versions Updated Driver
Version
R555 All driver versions prior to 555.52.04 555.52.04
R550 All driver versions prior to 550.90.07 550.90.07
R535 All driver versions prior to 535.183.01 535.183.01
R470 All driver versions prior to 470.256.02 470.256.02
Andreas
--- End Message ---
--- Begin Message ---
Source: nvidia-graphics-drivers
Source-Version: 535.183.01-1
Done: Andreas Beckmann <a...@debian.org>
We believe that the bug you reported is fixed in the latest version of
nvidia-graphics-drivers, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to 1072...@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Andreas Beckmann <a...@debian.org> (supplier of updated nvidia-graphics-drivers
package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmas...@ftp-master.debian.org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Format: 1.8
Date: Fri, 14 Jun 2024 11:20:01 +0200
Source: nvidia-graphics-drivers
Architecture: source
Version: 535.183.01-1
Distribution: unstable
Urgency: medium
Maintainer: Debian NVIDIA Maintainers <pkg-nvidia-de...@lists.alioth.debian.org>
Changed-By: Andreas Beckmann <a...@debian.org>
Closes: 1072792
Changes:
nvidia-graphics-drivers (535.183.01-1) unstable; urgency=medium
.
* New upstream LTS and Tesla branch release 535.183.01 (2024-06-04).
* Fixed CVE-2024-0090, CVE-2024-0092. (Closes: #1072792)
https://nvidia.custhelp.com/app/answers/detail/a_id/5551
- Fixed a bug that could cause additional X screens to claim displays
that should have been assigned to a prior X screen based on the given X
configuration.
* New upstream long term support branch release 535.179 (2024-05-09).
* New upstream long term support branch release 535.171.04 (2024-03-21).
- Fixed Xid error when playing Alan Wake 2 with ray tracing enabled.
- Fixed a regression which prevented some Vulkan applications from
receiving VK_DEVICE_LOST upon a VT switch, which could lead to the
application hanging or behaving incorrectly.
.
[ Andreas Beckmann ]
* Refresh patches.
* Update nv-readme.ids.
Checksums-Sha1:
dd6eba22a4994b7672d3fbc86f72d811d2302fd3 7919
nvidia-graphics-drivers_535.183.01-1.dsc
82c2f4273fd212fa9880f3adfdcd459c6343b25f 340390263
nvidia-graphics-drivers_535.183.01.orig-amd64.tar.gz
7f54555190e62c3cae6ccf57a73609673e7eb9ac 269450054
nvidia-graphics-drivers_535.183.01.orig-arm64.tar.gz
a507aa0e3e485941eb1459e8ede4893ba44b7852 96414735
nvidia-graphics-drivers_535.183.01.orig-ppc64el.tar.gz
b5b89a368631c174738b991a1c4ffc514e58e376 140
nvidia-graphics-drivers_535.183.01.orig.tar.gz
2c8f99b11f407c6c9d5145f8c42a9b70166c584d 226164
nvidia-graphics-drivers_535.183.01-1.debian.tar.xz
c23952b6e9be1147ef9989ecc43089fd4b2b8683 5517
nvidia-graphics-drivers_535.183.01-1_source.buildinfo
Checksums-Sha256:
de7bf6a5aec9ee20718a5ecdc7f8b6461713d0f66538c37f09a450a081cb6f78 7919
nvidia-graphics-drivers_535.183.01-1.dsc
83a15edba6fcaed5f6b55de27db0d1c1db057ca50da693804b472a0a74393f98 340390263
nvidia-graphics-drivers_535.183.01.orig-amd64.tar.gz
54cc2c8fb787b9053ab3c6035faca717239936a3deb66fc86230d9c9747e409e 269450054
nvidia-graphics-drivers_535.183.01.orig-arm64.tar.gz
98323524cb6cc35b5747c4cf2d74ee2700b51940045a9ec624e6d5ed3a75f6df 96414735
nvidia-graphics-drivers_535.183.01.orig-ppc64el.tar.gz
d93406f3ee4854b581df027edcd7676fcd160ffa878dccfb256c8df3c80ca6d5 140
nvidia-graphics-drivers_535.183.01.orig.tar.gz
0b111975df66d8736c6121783e2eb6aa76793bdeaf23c0009ecbb6f5bf6ef8b4 226164
nvidia-graphics-drivers_535.183.01-1.debian.tar.xz
f5fbf349d2670e06f4fcc797ea79fc4f0030a46e7ed673c633ed99e97e597f29 5517
nvidia-graphics-drivers_535.183.01-1_source.buildinfo
Files:
9cf850bca01ce346c4ee10235b61bd54 7919 non-free/libs optional
nvidia-graphics-drivers_535.183.01-1.dsc
6f95d2dc5b082639bf066295e86b1ae1 340390263 non-free/libs optional
nvidia-graphics-drivers_535.183.01.orig-amd64.tar.gz
12bf965d0d1f190412bfd186f433ded0 269450054 non-free/libs optional
nvidia-graphics-drivers_535.183.01.orig-arm64.tar.gz
a37e91391c1e0c79fd7c5a4ad78b193f 96414735 non-free/libs optional
nvidia-graphics-drivers_535.183.01.orig-ppc64el.tar.gz
adb27dfd2007e19997772b8f1472224b 140 non-free/libs optional
nvidia-graphics-drivers_535.183.01.orig.tar.gz
753222aa120c5bac97c48874758298f4 226164 non-free/libs optional
nvidia-graphics-drivers_535.183.01-1.debian.tar.xz
e3334ac2a44fdc5ef3f3cae8b3abbfeb 5517 non-free/libs optional
nvidia-graphics-drivers_535.183.01-1_source.buildinfo
-----BEGIN PGP SIGNATURE-----
iQJEBAEBCAAuFiEE6/MKMKjZxjvaRMaUX7M/k1np7QgFAmZsDAEQHGFuYmVAZGVi
aWFuLm9yZwAKCRBfsz+TWentCEUuD/4sOQoFwEl8JGwixUa6lhOSdmbUTTCFttv8
8ifZhcNGOajohm434l897rXCeQyaBYEsVTx7rmV/YrE2NUPd0Sj2AXxKauhmroCw
8mExWBgumNzYtzABlBvbSEkDz8iVEWRkIgX3lpmUgI/VamdYOcqs+5zGsGcyXld3
mbHhtzgx7sjVjuuHcm0PiHY9o1emWZ/9/5vE1HTIOmND9gBUZ5V8K59se0PgzCQ4
LQI25opclobQjnUcPPQ0IFX6zUzCw+YD4szUCo4YO/iamNjy/DoF0nSIamkV8Ps3
BzSZhh5Oc3daZfF3YAExq0IfyiNV1253vAW8VjjhuF+0CVHPDSwvg94S9HmOMO/B
IzeG96U3JABYOUtR/EojyFevqdHLxk/hgb2iAYsmSubp+u7RRtDIMPjwif03Zj8o
3PYKCphzpVR6eakkbTpk+KQ6Cg5bY5YoccuVcur/p4TOE/OMpDmjgf26g36veoRN
C7ZsFt/i6XROe9AIwQopT/mWtKVrwivP4WF7xRecIF0EW4sTwxKkWFQhP82GIong
zVI31R5BJl3WDSBkBPDhfnuluYhlGrAEyXK48H3LWfw5HX0lHLKwgwL2uJ3hmtsw
5CKVSzsAtSrKDGzsN+FKGuPo3WwX+nN/Vqy+fis1SjtJa0JG/Pz/cKQoZj4E0Y2e
qH0kMuFYoQ==
=72Mg
-----END PGP SIGNATURE-----
pgpYVwO1BZg3W.pgp
Description: PGP signature
--- End Message ---
