Your message dated Fri, 09 May 2025 11:32:20 +0000
with message-id <e1udlxk-007kof...@fasolo.debian.org>
and subject line Bug#1104076: fixed in nvidia-open-gpu-kernel-modules
535.247.01-1~deb12u1
has caused the Debian Bug report #1104076,
regarding nvidia-open-gpu-kernel-modules: CVE-2025-23244
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)
--
1104076: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1104076
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--- Begin Message ---
Source: nvidia-graphics-drivers
Severity: serious
Tags: security upstream
X-Debbugs-Cc: Debian Security Team <t...@security.debian.org>
Control: clone -1 -2 -3 -4 -5 -6 -7 -8 -9 -10 -11
Control: reassign -2 src:nvidia-graphics-drivers-legacy-340xx 340.76-6
Control: retitle -2 nvidia-graphics-drivers-legacy-340xx: CVE-2025-23244
Control: tag -2 + wontfix
Control: reassign -3 src:nvidia-graphics-drivers-legacy-390xx 390.48-4
Control: retitle -3 nvidia-graphics-drivers-legacy-390xx: CVE-2025-23244
Control: tag -3 + wontfix
Control: reassign -4 src:nvidia-graphics-drivers-tesla-418 418.87.01-1
Control: retitle -4 nvidia-graphics-drivers-tesla-418: CVE-2025-23244
Control: tag -4 + wontfix
Control: reassign -5 src:nvidia-graphics-drivers-tesla-450 450.51.05-1
Control: retitle -5 nvidia-graphics-drivers-tesla-450: CVE-2025-23244
Control: tag -5 + wontfix
Control: close -5 450.248.02-4
Control: reassign -6 src:nvidia-graphics-drivers-tesla-460 460.32.03-1
Control: retitle -6 nvidia-graphics-drivers-tesla-460: CVE-2025-23244
Control: tag -6 + wontfix
Control: close -6 460.106.00-3
Control: reassign -7 src:nvidia-graphics-drivers-tesla-470 470.57.02-1
Control: retitle -7 nvidia-graphics-drivers-tesla-470: CVE-2025-23244
Control: tag -7 + wontfix
Control: reassign -8 src:nvidia-graphics-drivers-tesla 510.85.02-1
Control: retitle -8 nvidia-graphics-drivers-tesla: CVE-2025-23244
Control: found -8 515.48.07-1
Control: found -8 525.60.13-1
Control: tag -8 + wontfix
Control: close -8 525.147.05-6
Control: reassign -9 src:nvidia-open-gpu-kernel-modules 515.43.04-1
Control: retitle -9 nvidia-open-gpu-kernel-modules: CVE-2025-23244
Control: found -9 520.56.06-1
Control: found -9 525.85.12-1
Control: found -9 530.30.02-1
Control: found -9 535.43.02-1
Control: found -9 545.23.06-1
Control: found -9 550.40.07-1
Control: found -9 555.42.02-1
Control: found -9 560.28.03-1
Control: found -9 565.57.01-1
Control: found -9 570.86.16-1
Control: reassign -10 src:nvidia-graphics-drivers-tesla-535 535.216.01-1
Control: retitle -10 nvidia-graphics-drivers-tesla-535: CVE-2025-23244
Control: reassign -11 src:nvidia-graphics-drivers-tesla-550 550.54.15-1
Control: retitle -11 nvidia-graphics-drivers-tesla-550: CVE-2025-23244
Control: found -1 340.24-1
Control: found -1 343.22-1
Control: found -1 396.18-1
Control: found -1 430.14-1
Control: found -1 455.23.04-1
Control: found -1 465.24.02-1
Control: found -1 495.44-1
Control: found -1 515.48.07-1
Control: found -1 520.56.06-1
Control: found -1 525.53-1
Control: found -1 530.30.02-1
Control: found -1 535.43.02-1
Control: found -1 545.23.06-1
Control: found -1 550.40.07-1
Control: found -1 555.42.02-1
Control: found -1 560.28.03-1
Control: found -1 565.57.01-1
Control: found -1 570.86.16-1
https://nvidia.custhelp.com/app/answers/detail/a_id/5630
CVE-2025-23244 NVIDIA GPU Display Driver for Linux contains a
vulnerability which could allow an unprivileged attacker to escalate
permissions. A successful exploit of this vulnerability might lead to
code execution, denial of service, escalation of privileges, information
disclosure, and data tampering.
Linux Driver Branch CVEs Addressed
R535, R550, R570, R575 CVE-2025-23244
Driver Branch Affected Driver Versions Updated Driver
Version
R575 All driver versions prior to 575.51.02 575.51.02
R570 All driver versions prior to 570.133.07 570.133.07
R550 All driver versions prior to 550.163.01 550.163.01
R535 All driver versions prior to 535.247.01 535.247.01
Andreas
--- End Message ---
--- Begin Message ---
Source: nvidia-open-gpu-kernel-modules
Source-Version: 535.247.01-1~deb12u1
Done: Andreas Beckmann <a...@debian.org>
We believe that the bug you reported is fixed in the latest version of
nvidia-open-gpu-kernel-modules, which is due to be installed in the Debian FTP
archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to 1104...@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Andreas Beckmann <a...@debian.org> (supplier of updated
nvidia-open-gpu-kernel-modules package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmas...@ftp-master.debian.org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Format: 1.8
Date: Thu, 08 May 2025 22:10:43 +0200
Source: nvidia-open-gpu-kernel-modules
Architecture: source
Version: 535.247.01-1~deb12u1
Distribution: bookworm
Urgency: medium
Maintainer: Debian NVIDIA Maintainers <pkg-nvidia-de...@lists.alioth.debian.org>
Changed-By: Andreas Beckmann <a...@debian.org>
Closes: 1090361 1093916 1098812 1104076
Changes:
nvidia-open-gpu-kernel-modules (535.247.01-1~deb12u1) bookworm; urgency=medium
.
* Rebuild for bookworm.
.
nvidia-open-gpu-kernel-modules (535.247.01-1) unstable; urgency=medium
.
* New upstream LTS and Tesla branch release 535.247.01 (2025-04-17).
* Fixed CVE-2025-23244. (Closes: #1104076)
https://nvidia.custhelp.com/app/answers/detail/a_id/5630
* Sync with src:nvidia-graphics-drivers.
.
nvidia-open-gpu-kernel-modules (535.230.02-1) unstable; urgency=medium
.
* New upstream LTS and Tesla branch release 535.230.02 (2025-01-16).
* Fixed CVE-2024-0150, CVE-2024-0147, CVE-2024-53869, CVE-2024-0131,
CVE-2024-0149. (Closes: #1093916)
https://nvidia.custhelp.com/app/answers/detail/a_id/5614
* Sync with src:nvidia-graphics-drivers.
.
nvidia-open-gpu-kernel-modules (535.216.03-4) unstable; urgency=medium
.
* Do not add -mfunction-return=thunk-extern flag, breaks backwards
compatibility with kernels built without this flag.
* Apply both patch sets manually.
.
nvidia-open-gpu-kernel-modules (535.216.03-3) unstable; urgency=medium
.
* Backport NV_MODULE_IMPORT_NS_TAKES_STRING_LITERAL and
NV_CRYPTO_AKCIPHER_VERIFY_PRESENT changes from 550.144.03 and
NV_FOLIO_TEST_SWAPCACHE_PRESENT changes from 565.57.01 to fix open kernel
module build for Linux 6.13.
* Let pahole ignore language c++11 for BTF generation. (Closes: #1098812)
* Fix warnings during open module build.
* Build with more kernel hardening flags.
* Sync with src:nvidia-graphics-drivers.
* Bump Standards-Version to 4.7.2. No changes needed.
.
nvidia-open-gpu-kernel-modules (535.216.03-2) unstable; urgency=medium
.
* Sync with src:nvidia-graphics-drivers. (Closes: #1090361)
.
nvidia-open-gpu-kernel-modules (535.216.03-1) unstable; urgency=medium
.
* New upstream Tesla branch release 535.216.03 (2024-11-19).
Checksums-Sha1:
aaac06a19c621e626a2427c36315083b4d8569b9 2713
nvidia-open-gpu-kernel-modules_535.247.01-1~deb12u1.dsc
c79141972cedf1dc24cd6dcd717a83a17017284f 29828
nvidia-open-gpu-kernel-modules_535.247.01-1~deb12u1.debian.tar.xz
942757f7bc7687a1d6619c720219c0dd586ad8e7 5960
nvidia-open-gpu-kernel-modules_535.247.01-1~deb12u1_source.buildinfo
Checksums-Sha256:
c97c182c0efe4ff817040403982701ea547aea5a45727d6ef2bd9daaeb699b73 2713
nvidia-open-gpu-kernel-modules_535.247.01-1~deb12u1.dsc
815ea9177251e4b40991db7cb7cf6b1b061383a6563e945914574b139d04076a 29828
nvidia-open-gpu-kernel-modules_535.247.01-1~deb12u1.debian.tar.xz
2554fd406b92e3feb8a8824744f1c1c4e6a2b44844b7bf43ee7a2958585ed4c1 5960
nvidia-open-gpu-kernel-modules_535.247.01-1~deb12u1_source.buildinfo
Files:
e0285086944045a210c0f63db4fc3057 2713 contrib/kernel optional
nvidia-open-gpu-kernel-modules_535.247.01-1~deb12u1.dsc
7181a7d2b791e63c234dd1d7beedb984 29828 contrib/kernel optional
nvidia-open-gpu-kernel-modules_535.247.01-1~deb12u1.debian.tar.xz
49bf2dabdae023884250b2d2863f1a94 5960 contrib/kernel optional
nvidia-open-gpu-kernel-modules_535.247.01-1~deb12u1_source.buildinfo
-----BEGIN PGP SIGNATURE-----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=1MWm
-----END PGP SIGNATURE-----
pgpligzTIqaZ7.pgp
Description: PGP signature
--- End Message ---
