Your message dated Thu, 31 Jul 2025 10:05:29 +0000
with message-id <[email protected]>
and subject line Bug#1072800: fixed in nvidia-open-gpu-kernel-modules
555.58.02-1
has caused the Debian Bug report #1072800,
regarding nvidia-open-gpu-kernel-modules: CVE-2024-0090, CVE-2024-0091,
CVE-2024-0092
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
1072800: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1072800
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Source: nvidia-graphics-drivers
Severity: serious
Tags: security upstream
X-Debbugs-Cc: Debian Security Team <[email protected]>
Control: clone -1 -2 -3 -4 -5 -6 -7 -8 -9
Control: reassign -2 src:nvidia-graphics-drivers-legacy-340xx 340.76-6
Control: retitle -2 nvidia-graphics-drivers-legacy-340xx: CVE-2024-0090,
CVE-2024-0092
Control: tag -2 + wontfix
Control: reassign -3 src:nvidia-graphics-drivers-legacy-390xx 390.48-4
Control: retitle -3 nvidia-graphics-drivers-legacy-390xx: CVE-2024-0090,
CVE-2024-0092
Control: tag -3 + wontfix
Control: reassign -4 src:nvidia-graphics-drivers-tesla-418 418.87.01-1
Control: retitle -4 nvidia-graphics-drivers-tesla-418: CVE-2024-0090,
CVE-2024-0092
Control: tag -4 + wontfix
Control: reassign -5 src:nvidia-graphics-drivers-tesla-450 450.51.05-1
Control: retitle -5 nvidia-graphics-drivers-tesla-450: CVE-2024-0090,
CVE-2024-0092
Control: tag -5 + wontfix
Control: close -5 450.248.02-4
Control: reassign -6 src:nvidia-graphics-drivers-tesla-460 460.32.03-1
Control: retitle -6 nvidia-graphics-drivers-tesla-460: CVE-2024-0090,
CVE-2024-0092
Control: tag -6 + wontfix
Control: close -6 460.106.00-3
Control: reassign -7 src:nvidia-graphics-drivers-tesla-470 470.57.02-1
Control: retitle -7 nvidia-graphics-drivers-tesla-470: CVE-2024-0090,
CVE-2024-0092
Control: reassign -8 src:nvidia-graphics-drivers-tesla 510.85.02-1
Control: retitle -8 nvidia-graphics-drivers-tesla: CVE-2024-0090, CVE-2024-0092
Control: found -8 515.48.07-1
Control: found -8 525.60.13-1
Control: tag -8 + wontfix
Control: close -8 525.147.05-6
Control: reassign -9 src:nvidia-open-gpu-kernel-modules 515.43.04-1
Control: retitle -9 nvidia-open-gpu-kernel-modules: CVE-2024-0090,
CVE-2024-0091, CVE-2024-0092
Control: found -9 520.56.06-1
Control: found -9 525.85.12-1
Control: found -9 530.30.02-1
Control: found -9 535.43.02-1
Control: found -9 545.23.06-1
Control: found -9 550.40.07-1
Control: found -9 555.42.02-1
Control: found -1 340.24-1
Control: found -1 343.22-1
Control: found -1 396.18-1
Control: found -1 430.14-1
Control: found -1 455.23.04-1
Control: found -1 465.24.02-1
Control: found -1 495.44-1
Control: found -1 515.48.07-1
Control: found -1 520.56.06-1
Control: found -1 525.53-1
Control: found -1 530.30.02-1
Control: found -1 535.43.02-1
Control: found -1 545.23.06-1
Control: found -1 550.40.07-1
Control: found -1 555.42.02-1
https://nvidia.custhelp.com/app/answers/detail/a_id/5551
CVE-2024-0090 NVIDIA GPU driver for Windows and Linux contains a
vulnerability where a user can cause an out-of-bounds write. A
successful exploit of this vulnerability might lead to code execution,
denial of service, escalation of privileges, information disclosure, and
data tampering.
CVE-2024-0091 NVIDIA GPU Display Driver for Windows and Linux contains
a vulnerability where a user can cause an untrusted pointer dereference
by executing a driver API. A successful exploit of this vulnerability
might lead to denial of service, information disclosure, and data
tampering.
CVE-2024-0092 NVIDIA GPU Driver for Windows and Linux contains a
vulnerability where an improper check or improper handling of exception
conditions might lead to denial of service.
Linux Driver Branch CVE IDs Addressed
R555, R550 CVE-2024-0090, CVE-2024-0091, CVE-2024-0092
R535, R470 CVE-2024-0090, CVE-2024-0092
Driver Branch Affected Driver Versions Updated Driver
Version
R555 All driver versions prior to 555.52.04 555.52.04
R550 All driver versions prior to 550.90.07 550.90.07
R535 All driver versions prior to 535.183.01 535.183.01
R470 All driver versions prior to 470.256.02 470.256.02
Andreas
--- End Message ---
--- Begin Message ---
Source: nvidia-open-gpu-kernel-modules
Source-Version: 555.58.02-1
Done: Andreas Beckmann <[email protected]>
We believe that the bug you reported is fixed in the latest version of
nvidia-open-gpu-kernel-modules, which is due to be installed in the Debian FTP
archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Andreas Beckmann <[email protected]> (supplier of updated
nvidia-open-gpu-kernel-modules package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Format: 1.8
Date: Thu, 31 Jul 2025 11:34:47 +0200
Source: nvidia-open-gpu-kernel-modules
Architecture: source
Version: 555.58.02-1
Distribution: experimental
Urgency: medium
Maintainer: Debian NVIDIA Maintainers <[email protected]>
Changed-By: Andreas Beckmann <[email protected]>
Closes: 1072800
Changes:
nvidia-open-gpu-kernel-modules (555.58.02-1) experimental; urgency=medium
.
* New upstream new feature branch release 555.58.02 (2024-07-01).
* New upstream new feature branch release 555.58 (2024-06-27).
* New upstream beta 555.52.04 (2024-06-05).
* Fixed CVE-2024-0090, CVE-2024-0091, CVE-2024-0092. (Closes: #1072800)
https://nvidia.custhelp.com/app/answers/detail/a_id/5551
* Sync with src:nvidia-graphics-drivers.
* Refresh patches.
Checksums-Sha1:
c91bbd005d669417a8bbf5c0e0feb4817e6619f8 2674
nvidia-open-gpu-kernel-modules_555.58.02-1.dsc
152e933bb5e988f4c4cd4dd172c486fee1b95da6 13676856
nvidia-open-gpu-kernel-modules_555.58.02.orig.tar.xz
2d392b3d037eb60cf81b394f72a5447196df5f2f 44564
nvidia-open-gpu-kernel-modules_555.58.02-1.debian.tar.xz
1580c9b5ae84f697726fa661d0fb055ae33b3d5d 5542
nvidia-open-gpu-kernel-modules_555.58.02-1_source.buildinfo
Checksums-Sha256:
4c40df335f5461a519e3782dd45ab747be73413b28116453beb8a58e8ed261a2 2674
nvidia-open-gpu-kernel-modules_555.58.02-1.dsc
fc821323e924edbc636fa61b66edf5918abb8517c53e18c4bd883fa495b05da8 13676856
nvidia-open-gpu-kernel-modules_555.58.02.orig.tar.xz
7735919ca3262031412104637e93c89900afafccb72b7ea7bf6f31e56f4c9418 44564
nvidia-open-gpu-kernel-modules_555.58.02-1.debian.tar.xz
791952073064a679c4351e01af4a21fe654eb4c709fbd102b4ccb8707fc9d665 5542
nvidia-open-gpu-kernel-modules_555.58.02-1_source.buildinfo
Files:
abaea40f02dda54417c8b197db24fb87 2674 contrib/kernel optional
nvidia-open-gpu-kernel-modules_555.58.02-1.dsc
dfd8bad8202cb864672bd6371837613e 13676856 contrib/kernel optional
nvidia-open-gpu-kernel-modules_555.58.02.orig.tar.xz
e0330a5439218f43e233ba1f8b305da7 44564 contrib/kernel optional
nvidia-open-gpu-kernel-modules_555.58.02-1.debian.tar.xz
810d4e1840a54a8d5777adaae1544959 5542 contrib/kernel optional
nvidia-open-gpu-kernel-modules_555.58.02-1_source.buildinfo
-----BEGIN PGP SIGNATURE-----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=hY4l
-----END PGP SIGNATURE-----
pgpEKHD43bZC2.pgp
Description: PGP signature
--- End Message ---
