--- Begin Message ---
Source: nvidia-graphics-drivers
Severity: serious
Tags: security upstream
Control: clone -1 -2 -3 -4 -5 -6 -7 -8 -9
Control: reassign -2 src:nvidia-graphics-drivers-legacy-340xx 340.76-6
Control: retitle -2 nvidia-graphics-drivers-legacy-340xx: CVE-2022-34670,
CVE-2022-34674, CVE-2022-34675, CVE-2022-34677, CVE-2022-34680, CVE-2022-42257,
CVE-2022-42258, CVE-2022-42259
Control: tag -2 + wontfix
Control: reassign -3 src:nvidia-graphics-drivers-legacy-390xx 390.48-4
Control: retitle -3 nvidia-graphics-drivers-legacy-390xx: CVE-2022-34670,
CVE-2022-34674, CVE-2022-34675, CVE-2022-34677, CVE-2022-34680, CVE-2022-42257,
CVE-2022-42258, CVE-2022-42259
Control: reassign -4 src:nvidia-graphics-drivers-tesla-418 418.87.01-1
Control: retitle -4 nvidia-graphics-drivers-tesla-418: CVE-2022-34670,
CVE-2022-34674, CVE-2022-34675, CVE-2022-34677, CVE-2022-34679, CVE-2022-34680,
CVE-2022-34682, CVE-2022-42254, CVE-2022-42256, CVE-2022-42257, CVE-2022-42258,
CVE-2022-42259, CVE-2022-42260, CVE-2022-42261, CVE-2022-42262, CVE-2022-42263,
CVE-2022-42264
Control: tag -4 + wontfix
Control: reassign -5 src:nvidia-graphics-drivers-tesla-450 450.51.05-1
Control: retitle -5 nvidia-graphics-drivers-tesla-450: CVE-2022-34670,
CVE-2022-34674, CVE-2022-34675, CVE-2022-34677, CVE-2022-34679, CVE-2022-34680,
CVE-2022-34682, CVE-2022-42254, CVE-2022-42256, CVE-2022-42257, CVE-2022-42258,
CVE-2022-42259, CVE-2022-42260, CVE-2022-42261, CVE-2022-42262, CVE-2022-42263,
CVE-2022-42264
Control: reassign -6 src:nvidia-graphics-drivers-tesla-460 460.32.03-1
Control: retitle -6 nvidia-graphics-drivers-tesla-460: CVE-2022-34670,
CVE-2022-34674, CVE-2022-34675, CVE-2022-34677, CVE-2022-34679, CVE-2022-34680,
CVE-2022-34682, CVE-2022-42254, CVE-2022-42255, CVE-2022-42256, CVE-2022-42257,
CVE-2022-42258, CVE-2022-42259, CVE-2022-42260, CVE-2022-42261, CVE-2022-42262,
CVE-2022-42263, CVE-2022-42264
Control: tag -6 + wontfix
Control: close -6 460.106.00-3
Control: reassign -7 src:nvidia-graphics-drivers-tesla-470 470.57.02-1
Control: retitle -7 nvidia-graphics-drivers-tesla-470: CVE-2022-34670,
CVE-2022-34674, CVE-2022-34675, CVE-2022-34677, CVE-2022-34679, CVE-2022-34680,
CVE-2022-34682, CVE-2022-42254, CVE-2022-42255, CVE-2022-42256, CVE-2022-42257,
CVE-2022-42258, CVE-2022-42259, CVE-2022-42260, CVE-2022-42261, CVE-2022-42262,
CVE-2022-42263, CVE-2022-42264
Control: reassign -8 src:nvidia-graphics-drivers-tesla-510 510.47.03-1
Control: retitle -8 nvidia-graphics-drivers-tesla-510: CVE-2022-34670,
CVE-2022-34674, CVE-2022-34675, CVE-2022-34677, CVE-2022-34679, CVE-2022-34680,
CVE-2022-34682, CVE-2022-34684, CVE-2022-42254, CVE-2022-42255, CVE-2022-42256,
CVE-2022-42257, CVE-2022-42258, CVE-2022-42259, CVE-2022-42260, CVE-2022-42261,
CVE-2022-42262, CVE-2022-42263, CVE-2022-42264
Control: reassign -9 src:nvidia-graphics-drivers-tesla 510.85.02-1
Control: retitle -9 nvidia-graphics-drivers-tesla: CVE-2022-34670,
CVE-2022-34674, CVE-2022-34675, CVE-2022-34677, CVE-2022-34679, CVE-2022-34680,
CVE-2022-34682, CVE-2022-34684, CVE-2022-42254, CVE-2022-42255, CVE-2022-42256,
CVE-2022-42257, CVE-2022-42258, CVE-2022-42259, CVE-2022-42260, CVE-2022-42261,
CVE-2022-42262, CVE-2022-42263, CVE-2022-42264
Control: found -1 340.24-1
Control: found -1 343.22-1
Control: found -1 396.18-1
Control: found -1 430.14-1
Control: found -1 455.23.04-1
Control: found -1 465.24.02-1
Control: found -1 495.44-1
Control: found -1 515.48.07-1
https://nvidia.custhelp.com/app/answers/detail/a_id/5415
CVE-2022-34670 NVIDIA GPU Display Driver for Linux contains a
vulnerability in the kernel mode layer handler, where an unprivileged
regular user can cause truncation errors when casting a primitive to a
primitive of smaller size causes data to be lost in the conversion,
which may lead to denial of service or information disclosure.
CVE-2022-42263 NVIDIA GPU Display Driver for Linux contains a
vulnerability in the kernel mode layer handler, where an Integer
overflow may lead to denial of service or information disclosure.
CVE-2022-34676 NVIDIA GPU Display Driver for Linux contains a
vulnerability in the kernel mode layer handler, where an out-of-bounds
read may lead to denial of service, information disclosure, or data
tampering.
CVE-2022-42264 NVIDIA GPU Display Driver for Linux contains a
vulnerability in the kernel mode layer, where an unprivileged regular
user can cause the use of an out-of-range pointer offset, which may lead
to data tampering, data loss, information disclosure, or denial of
service.
CVE-2022-34674 NVIDIA GPU Display Driver for Linux contains a
vulnerability in the kernel mode layer handler, where a helper function
maps more physical pages than were requested, which may lead to
undefined behavior or an information leak.
CVE-2022-34678 NVIDIA GPU Display Driver for Windows and Linux contains
a vulnerability in the kernel mode layer, where an unprivileged user can
cause a null-pointer dereference, which may lead to denial of service.
CVE-2022-34679 NVIDIA GPU Display Driver for Linux contains a
vulnerability in the kernel mode layer handler, where an unhandled
return value can lead to a null-pointer dereference, which may lead to
denial of service.
CVE-2022-34680 NVIDIA GPU Display Driver for Linux contains a
vulnerability in the kernel mode layer handler, where an integer
truncation can lead to an out-of-bounds read, which may lead to denial
of service.
CVE-2022-34677 NVIDIA GPU Display Driver for Linux contains a
vulnerability in the kernel mode layer handler, where an unprivileged
regular user can cause an integer to be truncated, which may lead to
denial of service or data tampering.
CVE-2022-34682 NVIDIA GPU Display Driver for Linux contains a
vulnerability in the kernel mode layer, where an unprivileged regular
user can cause a null-pointer dereference, which may lead to denial of
service.
CVE-2022-42257 NVIDIA GPU Display Driver for Linux contains a
vulnerability in the kernel mode layer (nvidia.ko), where an integer
overflow may lead to information disclosure, data tampering or denial of
service.
CVE-2022-42265 NVIDIA GPU Display Driver for Linux contains a
vulnerability in the kernel mode layer (nvidia.ko), where an integer
overflow may lead to information disclosure or data tampering.
CVE-2022-34684 NVIDIA GPU Display Driver for Linux contains a
vulnerability in the kernel mode layer (nvidia.ko), where an off-by-one
error may lead to data tampering or information disclosure.
CVE-2022-42254 NVIDIA GPU Display Driver for Linux contains a
vulnerability in the kernel mode layer (nvidia.ko), where an
out-of-bounds array access may lead to denial of service, data
tampering, or information disclosure.
CVE-2022-42258 NVIDIA GPU Display Driver for Linux contains a
vulnerability in the kernel mode layer (nvidia.ko), where an integer
overflow may lead to denial of service, data tampering, or information
disclosure.
CVE-2022-42255 NVIDIA GPU Display Driver for Linux contains a
vulnerability in the kernel mode layer (nvidia.ko), where an
out-of-bounds array access may lead to denial of service, information
disclosure, or data tampering.
CVE-2022-42256 NVIDIA GPU Display Driver for Linux contains a
vulnerability in the kernel mode layer (nvidia.ko), where an integer
overflow in index validation may lead to denial of service, information
disclosure, or data tampering.
CVE-2022-34673 NVIDIA GPU Display Driver for Linux contains a
vulnerability in the kernel mode layer (nvidia.ko), where an
out-of-bounds array access may lead to denial of service, information
disclosure, or data tampering.
CVE-2022-42259 NVIDIA GPU Display Driver for Linux contains a
vulnerability in the kernel mode layer (nvidia.ko), where an integer
overflow may lead to denial of service.
Linux Driver Branch CVE IDs Addressed
R515 CVE-2022-34670, CVE-2022-34673, CVE-2022-34674, CVE-2022-34675,
CVE-2022-34677, CVE-2022-34679, CVE-2022-34680, CVE-2022-34682,
CVE-2022-34684, CVE-2022-42254, CVE-2022-42255, CVE-2022-42256,
CVE-2022-42257, CVE-2022-42258, CVE-2022-42259, CVE-2022-42263,
CVE-2022-42264, CVE-2022-42265
R510 CVE-2022-34670, CVE-2022-34674, CVE-2022-34675, CVE-2022-34677,
CVE-2022-34679, CVE-2022-34680, CVE-2022-34682, CVE-2022-34684,
CVE-2022-42254, CVE-2022-42255, CVE-2022-42256, CVE-2022-42257,
CVE-2022-42258, CVE-2022-42259, CVE-2022-42260, CVE-2022-42261,
CVE-2022-42262, CVE-2022-42263, CVE-2022-42264
R470 CVE-2022-34670, CVE-2022-34674, CVE-2022-34675, CVE-2022-34677,
CVE-2022-34679, CVE-2022-34680, CVE-2022-34682, CVE-2022-42254,
CVE-2022-42255, CVE-2022-42256, CVE-2022-42257, CVE-2022-42258,
CVE-2022-42259, CVE-2022-42260, CVE-2022-42261, CVE-2022-42262,
CVE-2022-42263, CVE-2022-42264
R450 CVE-2022-34670, CVE-2022-34674, CVE-2022-34675, CVE-2022-34677,
CVE-2022-34679, CVE-2022-34680, CVE-2022-34682, CVE-2022-42254,
CVE-2022-42256, CVE-2022-42257, CVE-2022-42258, CVE-2022-42259,
CVE-2022-42260, CVE-2022-42261, CVE-2022-42262, CVE-2022-42263,
CVE-2022-42264
R390 CVE-2022-34670, CVE-2022-34674, CVE-2022-34675, CVE-2022-34677,
CVE-2022-34680, CVE-2022-42257, CVE-2022-42258, CVE-2022-42259
Andreas
--- End Message ---
--- Begin Message ---
Source: nvidia-graphics-drivers-tesla-470
Source-Version: 470.161.03-1~deb11u1
Done: Andreas Beckmann <a...@debian.org>
We believe that the bug you reported is fixed in the latest version of
nvidia-graphics-drivers-tesla-470, which is due to be installed in the Debian
FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to 1025...@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Andreas Beckmann <a...@debian.org> (supplier of updated
nvidia-graphics-drivers-tesla-470 package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmas...@ftp-master.debian.org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Format: 1.8
Date: Sat, 10 Dec 2022 02:43:07 +0100
Source: nvidia-graphics-drivers-tesla-470
Architecture: source
Version: 470.161.03-1~deb11u1
Distribution: bullseye
Urgency: medium
Maintainer: Debian NVIDIA Maintainers <pkg-nvidia-de...@lists.alioth.debian.org>
Changed-By: Andreas Beckmann <a...@debian.org>
Closes: 1020697 1021974 1022738 1024852 1025279 1025285
Changes:
nvidia-graphics-drivers-tesla-470 (470.161.03-1~deb11u1) bullseye;
urgency=medium
.
* Rebuild for bullseye.
.
nvidia-graphics-drivers-tesla-470 (470.161.03-1) unstable; urgency=medium
.
* New upstream production branch release 470.161.03 (2022-11-22).
* Fixed CVE-2022-34670, CVE-2022-34674, CVE-2022-34675, CVE-2022-34677,
CVE-2022-34679, CVE-2022-34680, CVE-2022-34682, CVE-2022-42254,
CVE-2022-42255, CVE-2022-42256, CVE-2022-42257, CVE-2022-42258,
CVE-2022-42259, CVE-2022-42260, CVE-2022-42261, CVE-2022-42262,
CVE-2022-42263, CVE-2022-42264. (Closes: #1025285)
https://nvidia.custhelp.com/app/answers/detail/a_id/5415
- Fixed a bug that caused the Xorg server to crash if an NvFBC capture
session is started while video memory is full.
* Improved compatibility with recent Linux kernels.
* New upstream Tesla release (amd64 only) 470.141.10 (2022-10-19).
.
[ Andreas Beckmann ]
* Refresh patches.
* Add missing #includes to fix kernel module build for ppc64el.
* Rename the internally used ARCH variable which might clash on externally
set values.
* Use substitutions for ${nvidia-kernel} and friends (510.108.03-1).
* Try to compile a kernel module at package build time (510.108.03-1).
.
nvidia-graphics-drivers (470.161.03-1) bullseye; urgency=medium
.
* New upstream production branch release 470.161.03 (2022-11-22).
* Fixed CVE-2022-34670, CVE-2022-34674, CVE-2022-34675, CVE-2022-34677,
CVE-2022-34679, CVE-2022-34680, CVE-2022-34682, CVE-2022-42254,
CVE-2022-42255, CVE-2022-42256, CVE-2022-42257, CVE-2022-42258,
CVE-2022-42259, CVE-2022-42260, CVE-2022-42261, CVE-2022-42262,
CVE-2022-42263, CVE-2022-42264. (Closes: #1025279)
https://nvidia.custhelp.com/app/answers/detail/a_id/5415
- Fixed a bug that caused the Xorg server to crash if an NvFBC capture
session is started while video memory is full.
* Improved compatibility with recent Linux kernels. (Closes: #1024852)
* New upstream Tesla release (amd64 only) 470.141.10 (2022-10-19).
.
[ Andreas Beckmann ]
* Refresh patches.
* Add missing #includes to fix kernel module build for ppc64el.
* Rename the internally used ARCH variable which might clash on externally
set values.
* Use substitutions for ${nvidia-kernel} and friends (510.108.03-1).
* Try to compile a kernel module at package build time (510.108.03-1).
* Upload to bullseye.
.
nvidia-graphics-drivers-tesla-470 (470.141.03-3) unstable; urgency=medium
.
* Backport get_task_ioprio changes from 510.85.02, acpi changes from
510.85.02 and 515.65.01, drm_frambuffer.h changes from 515.76 to fix
kernel module build for Linux 6.0. (Closes: #1021974, #1022738)
.
nvidia-graphics-drivers-tesla-470 (470.141.03-2) unstable; urgency=medium
.
* Rebuild as Tesla 470 driver.
.
nvidia-graphics-drivers (470.141.03-2) unstable; urgency=medium
.
* Add support for unversioned Tesla packages (tesla 510.85.02-1).
(Closes: #1020697)
* Switch *-source to a modern module-assistant based template.
* Drop support for kernel-package and make-kpkg, gone since stretch.
Checksums-Sha1:
8228bd4b8135a3394592ba032c8e68071a107cfb 8188
nvidia-graphics-drivers-tesla-470_470.161.03-1~deb11u1.dsc
23c67970759b95096f9ef5b59c50f37d364ddc8c 210652
nvidia-graphics-drivers-tesla-470_470.161.03-1~deb11u1.debian.tar.xz
f37fc5fbdceeb06a730f7c278a9582a02c1bc755 8455
nvidia-graphics-drivers-tesla-470_470.161.03-1~deb11u1_source.buildinfo
Checksums-Sha256:
c816241df4e2dccf2344e4aff7d7f093f9674e6f986af3ee84462081f65a4b97 8188
nvidia-graphics-drivers-tesla-470_470.161.03-1~deb11u1.dsc
c837de478d9daa8e8fa1a27f4cccac182edcdc0aa7a4ac8bcb37c4e38ae029e0 210652
nvidia-graphics-drivers-tesla-470_470.161.03-1~deb11u1.debian.tar.xz
f6ae4a6bfc18ea6780ee8204622086792b7a5d52567c8b5b0b328fdfbc123dc9 8455
nvidia-graphics-drivers-tesla-470_470.161.03-1~deb11u1_source.buildinfo
Files:
8a62e4fc1cc351cb83c768a605e1672f 8188 non-free/libs optional
nvidia-graphics-drivers-tesla-470_470.161.03-1~deb11u1.dsc
2be923ed23f38e17b0ecbdd871556027 210652 non-free/libs optional
nvidia-graphics-drivers-tesla-470_470.161.03-1~deb11u1.debian.tar.xz
2d11efd28a4ef73e0ddb6d0c8ddff48c 8455 non-free/libs optional
nvidia-graphics-drivers-tesla-470_470.161.03-1~deb11u1_source.buildinfo
-----BEGIN PGP SIGNATURE-----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=MSmD
-----END PGP SIGNATURE-----
--- End Message ---
