Bug#894338: nvidia-graphics-drivers: CVE-2018-6249, CVE-2018-6253: null pointer dereference and infinite recursion due to malformed shader

Luca Boccassi bluca at debian.org
Thu Mar 29 10:11:59 UTC 2018


Source: nvidia-graphics-drivers
Version: 384.111
Severity: serious
Tags: security upstream

http://nvidia.custhelp.com/app/answers/detail/a_id/4649

CVE-2018-6249

NVIDIA GPU Display Driver contains a vulnerability in kernel mode layer
handler where a NULL pointer dereference may lead to denial of service
or potential escalation of privileges.

CVE-2018-6253

NVIDIA GPU Display Driver contains a vulnerability in the DirectX and
OpenGL Usermode drivers where a specially crafted pixel shader can
cause infinite recursion leading to denial of service.

Fixed versions:

R390	390.46
R384	384.125

-- 
Kind regards,
Luca Boccassi
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 488 bytes
Desc: This is a digitally signed message part
URL: <http://lists.alioth.debian.org/pipermail/pkg-nvidia-devel/attachments/20180329/8ded7e2a/attachment-0001.sig>


More information about the pkg-nvidia-devel mailing list