Your message dated Fri, 26 Dec 2025 15:17:30 +0000
with message-id <[email protected]>
and subject line Bug#1109907: fixed in nvidia-graphics-drivers 535.261.03-1
has caused the Debian Bug report #1109907,
regarding nvidia-graphics-drivers: CVE-2025-23279, CVE-2025-23286
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
1109907: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1109907
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Source: nvidia-graphics-drivers
Severity: serious
Tags: security upstream
X-Debbugs-Cc: Debian Security Team <[email protected]>
Control: clone -1 -2 -3 -4 -5 -6 -7 -8 -9 -10 -11
Control: reassign -2 src:nvidia-graphics-drivers-legacy-340xx 340.76-6
Control: retitle -2 nvidia-graphics-drivers-legacy-340xx: CVE-2025-23279,
CVE-2025-23286
Control: tag -2 + wontfix
Control: reassign -3 src:nvidia-graphics-drivers-legacy-390xx 390.48-4
Control: retitle -3 nvidia-graphics-drivers-legacy-390xx: CVE-2025-23279,
CVE-2025-23286
Control: tag -3 + wontfix
Control: reassign -4 src:nvidia-graphics-drivers-tesla-418 418.87.01-1
Control: retitle -4 nvidia-graphics-drivers-tesla-418: CVE-2025-23279,
CVE-2025-23286
Control: tag -4 + wontfix
Control: reassign -5 src:nvidia-graphics-drivers-tesla-450 450.51.05-1
Control: retitle -5 nvidia-graphics-drivers-tesla-450: CVE-2025-23279,
CVE-2025-23286
Control: tag -5 + wontfix
Control: close -5 450.248.02-4
Control: reassign -6 src:nvidia-graphics-drivers-tesla-460 460.32.03-1
Control: retitle -6 nvidia-graphics-drivers-tesla-460: CVE-2025-23279,
CVE-2025-23286
Control: tag -6 + wontfix
Control: close -6 460.106.00-3
Control: reassign -7 src:nvidia-graphics-drivers-tesla-470 470.57.02-1
Control: retitle -7 nvidia-graphics-drivers-tesla-470: CVE-2025-23279,
CVE-2025-23286
Control: tag -7 + wontfix
Control: reassign -8 src:nvidia-graphics-drivers-tesla 510.85.02-1
Control: retitle -8 nvidia-graphics-drivers-tesla: CVE-2025-23279,
CVE-2025-23286
Control: found -8 515.48.07-1
Control: found -8 525.60.13-1
Control: tag -8 + wontfix
Control: close -8 525.147.05-6
Control: reassign -9 src:nvidia-open-gpu-kernel-modules 515.43.04-1
Control: retitle -9 nvidia-open-gpu-kernel-modules: CVE-2025-23279,
CVE-2025-23286
Control: found -9 520.56.06-1
Control: found -9 525.85.12-1
Control: found -9 530.30.02-1
Control: found -9 535.43.02-1
Control: found -9 545.23.06-1
Control: found -9 550.40.07-1
Control: found -9 555.42.02-1
Control: found -9 560.28.03-1
Control: found -9 565.57.01-1
Control: found -9 570.86.16-1
Control: found -9 575.51.02-1
Control: reassign -10 src:nvidia-graphics-drivers-tesla-535 535.216.01-1
Control: retitle -10 nvidia-graphics-drivers-tesla-535: CVE-2025-23279,
CVE-2025-23286
Control: reassign -11 src:nvidia-graphics-drivers-tesla-550 550.54.15-1
Control: retitle -11 nvidia-graphics-drivers-tesla-550: CVE-2025-23279,
CVE-2025-23286
Control: tag -11 + wontfix
Control: found -1 340.24-1
Control: found -1 343.22-1
Control: found -1 396.18-1
Control: found -1 430.14-1
Control: found -1 455.23.04-1
Control: found -1 465.24.02-1
Control: found -1 495.44-1
Control: found -1 515.48.07-1
Control: found -1 520.56.06-1
Control: found -1 525.53-1
Control: found -1 530.30.02-1
Control: found -1 535.43.02-1
Control: found -1 545.23.06-1
Control: found -1 550.40.07-1
Control: found -1 555.42.02-1
Control: found -1 560.28.03-1
Control: found -1 565.57.01-1
Control: found -1 570.86.16-1
Control: found -1 575.51.02-1
https://nvidia.custhelp.com/app/answers/detail/a_id/5670
CVE‑2025‑23279 NVIDIA .run Installer for Linux and Solaris contains a
vulnerability where an attacker could use a race condition to escalate
privileges. A successful exploit of this vulnerability might lead to
coqe execution, escalation of privileges, information disclosure, denial
of service, or data tampering.
CVE‑2025‑23286 NVIDIA GPU Display Driver for Windows and Linux contains
a vulnerability where an attacker could read invalid memory. A
successful exploit of this vulnerability might lead to information
disclosure.
Linux Driver Branch CVEs Addressed
R570 CVE-2025-23279
R535 CVE-2025-23279, CVE-2025-23286
Driver Branch Affected Driver Versions Updated Driver Version
R575 All driver version prior to 575.64.05 575.64.05
R570 All driver version prior to 570.172.08 570.172.08
R535 All driver versions prior to 535.261.03 535.261.03
Andreas
--- End Message ---
--- Begin Message ---
Source: nvidia-graphics-drivers
Source-Version: 535.261.03-1
Done: Andreas Beckmann <[email protected]>
We believe that the bug you reported is fixed in the latest version of
nvidia-graphics-drivers, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Andreas Beckmann <[email protected]> (supplier of updated nvidia-graphics-drivers
package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Sat, 20 Dec 2025 23:41:28 +0100
Source: nvidia-graphics-drivers
Architecture: source
Version: 535.261.03-1
Distribution: bookworm
Urgency: medium
Maintainer: Debian NVIDIA Maintainers <[email protected]>
Changed-By: Andreas Beckmann <[email protected]>
Closes: 1109907
Changes:
nvidia-graphics-drivers (535.261.03-1) bookworm; urgency=medium
.
* New upstream LTS and Tesla branch release 535.261.03 (2025-07-17).
* Fixed CVE-2025-23279, CVE-2025-23286. (Closes: #1109907)
https://nvidia.custhelp.com/app/answers/detail/a_id/5670
- Fixed a bug that could cause 32-bit x86 applications running on
recent builds of glibc to crash on dlopen().
- Fixed an issue that could cause render-offloaded applications using
KDE Frameworks 6 to crash.
* Improved compatibility with recent Linux kernels.
.
[ Andreas Beckmann ]
* Refresh patches.
.
nvidia-graphics-drivers (535.247.01-2) UNRELEASED; urgency=medium
.
[ Andreas Beckmann ]
* Backport drm_connector_helper_funcs_mode_valid_has_const_mode_arg changes
from 550.163.01 and ccflags-y, nv_timer_delete_sync, __iowrite64_lo_hi,
page_pgmap and make_device_exclusive changes from 570.153.02 and
nv_vma_start_write changes from 570.169 to fix kernel module build for
Linux 6.15.
.
[ Luca Boccassi ]
* Remove myself from Uploaders.
Checksums-Sha1:
66b42179074858262c53b270b2a43bbb581890e1 7207
nvidia-graphics-drivers_535.261.03-1.dsc
0c1663f1561c7bfccb127c3a1325458bce4ab9c6 340509410
nvidia-graphics-drivers_535.261.03.orig-amd64.tar.gz
8df13c69ea9efe22b61ed18549c70c5ceec95dc8 269488408
nvidia-graphics-drivers_535.261.03.orig-arm64.tar.gz
e3501a9a7a7c404e6f0bbfc755aa627e133e3cab 139
nvidia-graphics-drivers_535.261.03.orig.tar.gz
96b2777c8b8861bb71c5fde71052a9d01643104d 235936
nvidia-graphics-drivers_535.261.03-1.debian.tar.xz
b2630ff44411740f3423edf443fdbc4a3278a8e9 5993
nvidia-graphics-drivers_535.261.03-1_source.buildinfo
Checksums-Sha256:
763ea61da2722eae5e564c7046bac5b953c142152be754b2e2bb137e1b997769 7207
nvidia-graphics-drivers_535.261.03-1.dsc
2dc4d0dc5495cb898b48f0d774a2620452e9f0e486eb5ddac3e0dfa3efbf3b82 340509410
nvidia-graphics-drivers_535.261.03.orig-amd64.tar.gz
db51637fde3860307911fc7533233a4130b57fa0acbfd309cd7bf45576640325 269488408
nvidia-graphics-drivers_535.261.03.orig-arm64.tar.gz
01471136d9f8c44b98fb91228dca9d1c493fd552fba026228614ee9f1bc6ee8f 139
nvidia-graphics-drivers_535.261.03.orig.tar.gz
ddc9785291f8e6c05c72ac5d1790e7f177451c369af4562f760589d8f41a689c 235936
nvidia-graphics-drivers_535.261.03-1.debian.tar.xz
e9c439efda3e09563c713c96b684e603a4b54a163614d950d2e8a403800fd03e 5993
nvidia-graphics-drivers_535.261.03-1_source.buildinfo
Files:
41cdb9963e1e3c72e7b909b7ffb224d1 7207 non-free/libs optional
nvidia-graphics-drivers_535.261.03-1.dsc
88870f7847fccc0df277a79207ab8754 340509410 non-free/libs optional
nvidia-graphics-drivers_535.261.03.orig-amd64.tar.gz
bc6dfd099168a567277ab3e9452ee3da 269488408 non-free/libs optional
nvidia-graphics-drivers_535.261.03.orig-arm64.tar.gz
9cc9045d02c1abfc8a088d9265405080 139 non-free/libs optional
nvidia-graphics-drivers_535.261.03.orig.tar.gz
4a49b454a844901d51c13e0dce5ac924 235936 non-free/libs optional
nvidia-graphics-drivers_535.261.03-1.debian.tar.xz
d3ecdd8af82a60e0c8a039a7da317445 5993 non-free/libs optional
nvidia-graphics-drivers_535.261.03-1_source.buildinfo
-----BEGIN PGP SIGNATURE-----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=XWuv
-----END PGP SIGNATURE-----
pgpo_pSiXOYgl.pgp
Description: PGP signature
--- End Message ---
