Bug#1111851: bookworm-pu: package nvidia-open-gpu-kernel-modules/535.261.03-1

Andreas Beckmann anbe at debian.org
Fri Aug 22 20:54:07 BST 2025 

Package: release.debian.org
Severity: normal
Tags: bookworm
User: release.debian.org at packages.debian.org
Usertags: pu
X-Debbugs-Cc: nvidia-open-gpu-kernel-modules at packages.debian.org
Control: affects -1 + src:nvidia-open-gpu-kernel-modules

[ Reason ]
In order to fix a few CVEs we need to update
src:nvidia-open-gpu-kernel-modules (and src:nvidia-graphics-drivers in
lock-step for firmware-nvidia-gsp) to a new upstream release.

[ Impact ]
A proprietary graphics driver with unfixed CVEs.

[ Tests ]
autopkgtests for building the kernel module. Anything else would require
Nvidia GPUs and using the proprietary driver.

[ Risks ]
Updating the nvidia driver stack to a new upstream release in stable is
an established procedure.

[ Checklist ]
  [*] *all* changes are documented in the d/changelog
  [.] I reviewed all changes and I approve them
      Only debian/*, I treat the source code similar to the blobs in
      src:nvidia-graphics-drivers.
  [.] attach debdiff against the package in (old)stable
      Only for debian/* as I do it for src:nvidia-graphics-drivers
  [*] the issue is verified as fixed in unstable

[ Changes ]
+nvidia-open-gpu-kernel-modules (535.261.03-1) bookworm; urgency=medium
+
+  * New upstream LTS and Tesla branch release 535.261.03 (2025-07-17).
+    * Fixed CVE-2025-23279, CVE-2025-23286.  (Closes: #1109915)
+      https://nvidia.custhelp.com/app/answers/detail/a_id/5670
+  * Sync with src:nvidia-graphics-drivers.
+  * Upload to bookworm.
+
+ -- Andreas Beckmann <anbe at debian.org>  Fri, 22 Aug 2025 21:18:38 +0200
+
+nvidia-open-gpu-kernel-modules (535.247.01-2) UNRELEASED; urgency=medium
+
+  * Backport page_pgmap and hmm_make_device_exclusive_range changes from
+    570.153.02 to fix open kernel module build for Linux 6.15.
+  * Sync with src:nvidia-graphics-drivers.
+
+ -- Andreas Beckmann <anbe at debian.org>  Fri, 06 Jun 2025 15:11:06 +0200

[ Other info ]
This is no longer a direct rebuild from sid since we don't provide a
separate package for the Tesla 535 open kernel driver series in sid.
src:nvidia-open-gpu-kernel-modules and src:nvidia-graphics-drivers are
already at (non-LTSB) version 550.* in sid and trixie.

Andreas
-------------- next part --------------
A non-text attachment was scrubbed...
Name: nvidia-open-gpu-kernel-modules_535.261.03-1_bookworm.diff.xz
Type: application/x-xz
Size: 6988 bytes
Desc: not available
URL: <http://alioth-lists.debian.net/pipermail/pkg-nvidia-devel/attachments/20250822/a58e6e91/attachment.xz>

More information about the pkg-nvidia-devel mailing list