Bug#1021625: nvidia-cuda-toolkit: CVE-2022-34667
Andreas Beckmann
anbe at debian.org
Tue Oct 11 23:35:24 BST 2022
Source: nvidia-cuda-toolkit
Severity: important
Tags: security
https://nvidia.custhelp.com/app/answers/detail/a_id/5373
CVE-2022-34667 NVIDIA CUDA Toolkit SDK contains a stack-based buffer
overflow vulnerability in cuobjdump, where an unprivileged remote
attacker could exploit this buffer overflow condition by persuading a
local user to download a specially crafted corrupted file and execute
cuobjdump against it locally, which may lead to a limited denial of
service and some loss of data integrity for the local user.
Fixed in 11.8
Andreas
More information about the pkg-nvidia-devel
mailing list