[Git][security-tracker-team/security-tracker][master] new nvidia issues
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Sun Oct 12 15:14:31 BST 2025
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
cfe4e9e8 by Moritz Muehlenhoff at 2025-10-12T16:14:03+02:00
new nvidia issues
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -365,11 +365,57 @@ CVE-2025-25018 (Improper Neutralization of Input During Web Page Generation in K
CVE-2025-25017 (Improper Neutralization of Input During Web Page Generation in Kibana ...)
- kibana <itp> (bug #700337)
CVE-2025-23309 (NVIDIA Display Driver contains a vulnerability where an uncontrolled D ...)
- TODO: check
+ NOT-FOR-US: NVIDIA display drivers for Windows
CVE-2025-23282 (NVIDIA Display Driver for Linux contains a vulnerability where an atta ...)
- TODO: check
+ - nvidia-graphics-drivers <unfixed>
+ [trixie] - nvidia-graphics-drivers <no-dsa> (Non-free not supported)
+ [bookworm] - nvidia-graphics-drivers <no-dsa> (Non-free not supported)
+ - nvidia-graphics-drivers-legacy-340xx <unfixed>
+ - nvidia-graphics-drivers-legacy-390xx <unfixed>
+ - nvidia-graphics-drivers-tesla-418 <unfixed>
+ - nvidia-graphics-drivers-tesla-450 450.248.02-4
+ NOTE: 450.248.02-4 turned the package into a metapackage to aid switching to nvidia-graphics-drivers-tesla-470
+ - nvidia-graphics-drivers-tesla-460 460.106.00-3
+ NOTE: 460.106.00-3 turned the package into a metapackage to aid switching to nvidia-graphics-drivers-tesla-470
+ - nvidia-graphics-drivers-tesla-470 <unfixed>
+ [bookworm] - nvidia-graphics-drivers-tesla-470 <no-dsa> (Non-free not supported)
+ [bullseye] - nvidia-graphics-drivers-tesla-470 <ignored> (Non-free not supported)
+ - nvidia-graphics-drivers-tesla 525.147.05-6
+ NOTE: 525.147.05-6 turned the package into a metapackage to aid switching to nvidia-graphics-drivers
+ - nvidia-open-gpu-kernel-modules <unfixed>
+ [trixie] - nvidia-open-gpu-kernel-modules <no-dsa> (Contrib not supported)
+ [bookworm] - nvidia-open-gpu-kernel-modules <no-dsa> (Contrib not supported)
+ [experimental] - nvidia-graphics-drivers-tesla-535 535.261.03-1
+ - nvidia-graphics-drivers-tesla-535 <unfixed>
+ [trixie] - nvidia-graphics-drivers-tesla-535 <no-dsa> (Non-free not supported)
+ [bookworm] - nvidia-graphics-drivers-tesla-535 <no-dsa> (Non-free not supported)
+ - nvidia-graphics-drivers-tesla-550 <unfixed>
+ NOTE: https://nvidia.custhelp.com/app/answers/detail/a_id/5703
CVE-2025-23280 (NVIDIA Display Driver for Linux contains a vulnerability where an atta ...)
- TODO: check
+ - nvidia-graphics-drivers <unfixed>
+ [trixie] - nvidia-graphics-drivers <no-dsa> (Non-free not supported)
+ [bookworm] - nvidia-graphics-drivers <no-dsa> (Non-free not supported)
+ - nvidia-graphics-drivers-legacy-340xx <unfixed>
+ - nvidia-graphics-drivers-legacy-390xx <unfixed>
+ - nvidia-graphics-drivers-tesla-418 <unfixed>
+ - nvidia-graphics-drivers-tesla-450 450.248.02-4
+ NOTE: 450.248.02-4 turned the package into a metapackage to aid switching to nvidia-graphics-drivers-tesla-470
+ - nvidia-graphics-drivers-tesla-460 460.106.00-3
+ NOTE: 460.106.00-3 turned the package into a metapackage to aid switching to nvidia-graphics-drivers-tesla-470
+ - nvidia-graphics-drivers-tesla-470 <unfixed>
+ [bookworm] - nvidia-graphics-drivers-tesla-470 <no-dsa> (Non-free not supported)
+ [bullseye] - nvidia-graphics-drivers-tesla-470 <ignored> (Non-free not supported)
+ - nvidia-graphics-drivers-tesla 525.147.05-6
+ NOTE: 525.147.05-6 turned the package into a metapackage to aid switching to nvidia-graphics-drivers
+ - nvidia-open-gpu-kernel-modules <unfixed>
+ [trixie] - nvidia-open-gpu-kernel-modules <no-dsa> (Contrib not supported)
+ [bookworm] - nvidia-open-gpu-kernel-modules <no-dsa> (Contrib not supported)
+ [experimental] - nvidia-graphics-drivers-tesla-535 535.261.03-1
+ - nvidia-graphics-drivers-tesla-535 <unfixed>
+ [trixie] - nvidia-graphics-drivers-tesla-535 <no-dsa> (Non-free not supported)
+ [bookworm] - nvidia-graphics-drivers-tesla-535 <no-dsa> (Non-free not supported)
+ - nvidia-graphics-drivers-tesla-550 <unfixed>
+ NOTE: https://nvidia.custhelp.com/app/answers/detail/a_id/5703
CVE-2025-11618 (A missing validation check in FreeRTOS-Plus-TCP's UDP/IPv6 packet proc ...)
NOT-FOR-US: Amazon
CVE-2025-11617 (A missing validation check in FreeRTOS-Plus-TCP's IPv6 packet processi ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/cfe4e9e8a47e9d34cbfacd38b6625a5a1028e1df
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/cfe4e9e8a47e9d34cbfacd38b6625a5a1028e1df
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20251012/e8f1062d/attachment.htm>
More information about the debian-security-tracker-commits
mailing list