Bug#1076164: nvidia-cuda-toolkit: CVE-2024-0102

Thu Jul 11 21:44:53 BST 2024

Source: nvidia-cuda-toolkit
Version: 4.0.13-1
Severity: important
Tags: security upstream
X-Debbugs-Cc: Debian Security Team <team at security.debian.org>

https://nvidia.custhelp.com/app/answers/detail/a_id/5548

CVE-2024-0102 	NVIDIA CUDA Toolkit for all platforms contains a
vulnerability in nvdisasm, where an attacker can cause an out-of-bounds
read issue by deceiving a user into reading a malformed ELF file. A
successful exploit of this vulnerability might lead to denial of
service.

CVE IDs Addressed 	Affected Products 	Platform or OS 	Affected Versions 					Updated Version
CVE-2024-0102		NVIDIA CUDA Toolkit 	Windows, Linux 	All versions up to and including CUDA Toolkit 12.5U1	CUDA Toolkit 12.6

Andreas