Bug#1025286: marked as done (nvidia-graphics-drivers-tesla-510: CVE-2022-34670, CVE-2022-34674, CVE-2022-34675, CVE-2022-34677, CVE-2022-34679, CVE-2022-34680, CVE-2022-34682, CVE-2022-34684, CVE-2022-42254, CVE-2022-42255, CVE-2022-42256, CVE-2022-42257, CVE-2022-42258, CVE-2022-42259, CVE-2022-42260, CVE-2022-42261, CVE-2022-42262, CVE-2022-42263, CVE-2022-42264)

Debian Bug Tracking System Tue, 13 Dec 2022 02:54:20 -0800

Your message dated Tue, 13 Dec 2022 10:50:21 +0000
with message-id <e1p52rd-00216p...@fasolo.debian.org>
and subject line Bug#1025286: fixed in nvidia-graphics-drivers-tesla 
510.108.03-1
has caused the Debian Bug report #1025286,
regarding nvidia-graphics-drivers-tesla-510: CVE-2022-34670, CVE-2022-34674, 
CVE-2022-34675, CVE-2022-34677, CVE-2022-34679, CVE-2022-34680, CVE-2022-34682, 
CVE-2022-34684, CVE-2022-42254, CVE-2022-42255, CVE-2022-42256, CVE-2022-42257, 
CVE-2022-42258, CVE-2022-42259, CVE-2022-42260, CVE-2022-42261, CVE-2022-42262, 
CVE-2022-42263, CVE-2022-42264
to be marked as done.


This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)


-- 
1025286: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1025286
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems

--- Begin Message ---

Source: nvidia-graphics-drivers
Severity: serious
Tags: security upstream
Control: clone -1 -2 -3 -4 -5 -6 -7 -8 -9
Control: reassign -2 src:nvidia-graphics-drivers-legacy-340xx 340.76-6
Control: retitle -2 nvidia-graphics-drivers-legacy-340xx: CVE-2022-34670, 
CVE-2022-34674, CVE-2022-34675, CVE-2022-34677, CVE-2022-34680, CVE-2022-42257, 
CVE-2022-42258, CVE-2022-42259
Control: tag -2 + wontfix
Control: reassign -3 src:nvidia-graphics-drivers-legacy-390xx 390.48-4
Control: retitle -3 nvidia-graphics-drivers-legacy-390xx: CVE-2022-34670, 
CVE-2022-34674, CVE-2022-34675, CVE-2022-34677, CVE-2022-34680, CVE-2022-42257, 
CVE-2022-42258, CVE-2022-42259
Control: reassign -4 src:nvidia-graphics-drivers-tesla-418 418.87.01-1
Control: retitle -4 nvidia-graphics-drivers-tesla-418: CVE-2022-34670, 
CVE-2022-34674, CVE-2022-34675, CVE-2022-34677, CVE-2022-34679, CVE-2022-34680, 
CVE-2022-34682, CVE-2022-42254, CVE-2022-42256, CVE-2022-42257, CVE-2022-42258, 
CVE-2022-42259, CVE-2022-42260, CVE-2022-42261, CVE-2022-42262, CVE-2022-42263, 
CVE-2022-42264
Control: tag -4 + wontfix
Control: reassign -5 src:nvidia-graphics-drivers-tesla-450 450.51.05-1
Control: retitle -5 nvidia-graphics-drivers-tesla-450: CVE-2022-34670, 
CVE-2022-34674, CVE-2022-34675, CVE-2022-34677, CVE-2022-34679, CVE-2022-34680, 
CVE-2022-34682, CVE-2022-42254, CVE-2022-42256, CVE-2022-42257, CVE-2022-42258, 
CVE-2022-42259, CVE-2022-42260, CVE-2022-42261, CVE-2022-42262, CVE-2022-42263, 
CVE-2022-42264
Control: reassign -6 src:nvidia-graphics-drivers-tesla-460 460.32.03-1
Control: retitle -6 nvidia-graphics-drivers-tesla-460: CVE-2022-34670, 
CVE-2022-34674, CVE-2022-34675, CVE-2022-34677, CVE-2022-34679, CVE-2022-34680, 
CVE-2022-34682, CVE-2022-42254, CVE-2022-42255, CVE-2022-42256, CVE-2022-42257, 
CVE-2022-42258, CVE-2022-42259, CVE-2022-42260, CVE-2022-42261, CVE-2022-42262, 
CVE-2022-42263, CVE-2022-42264
Control: tag -6 + wontfix
Control: close -6 460.106.00-3
Control: reassign -7 src:nvidia-graphics-drivers-tesla-470 470.57.02-1
Control: retitle -7 nvidia-graphics-drivers-tesla-470: CVE-2022-34670, 
CVE-2022-34674, CVE-2022-34675, CVE-2022-34677, CVE-2022-34679, CVE-2022-34680, 
CVE-2022-34682, CVE-2022-42254, CVE-2022-42255, CVE-2022-42256, CVE-2022-42257, 
CVE-2022-42258, CVE-2022-42259, CVE-2022-42260, CVE-2022-42261, CVE-2022-42262, 
CVE-2022-42263, CVE-2022-42264
Control: reassign -8 src:nvidia-graphics-drivers-tesla-510 510.47.03-1
Control: retitle -8 nvidia-graphics-drivers-tesla-510: CVE-2022-34670, 
CVE-2022-34674, CVE-2022-34675, CVE-2022-34677, CVE-2022-34679, CVE-2022-34680, 
CVE-2022-34682, CVE-2022-34684, CVE-2022-42254, CVE-2022-42255, CVE-2022-42256, 
CVE-2022-42257, CVE-2022-42258, CVE-2022-42259, CVE-2022-42260, CVE-2022-42261, 
CVE-2022-42262, CVE-2022-42263, CVE-2022-42264
Control: reassign -9 src:nvidia-graphics-drivers-tesla 510.85.02-1
Control: retitle -9 nvidia-graphics-drivers-tesla: CVE-2022-34670, 
CVE-2022-34674, CVE-2022-34675, CVE-2022-34677, CVE-2022-34679, CVE-2022-34680, 
CVE-2022-34682, CVE-2022-34684, CVE-2022-42254, CVE-2022-42255, CVE-2022-42256, 
CVE-2022-42257, CVE-2022-42258, CVE-2022-42259, CVE-2022-42260, CVE-2022-42261, 
CVE-2022-42262, CVE-2022-42263, CVE-2022-42264
Control: found -1 340.24-1
Control: found -1 343.22-1
Control: found -1 396.18-1
Control: found -1 430.14-1
Control: found -1 455.23.04-1
Control: found -1 465.24.02-1
Control: found -1 495.44-1
Control: found -1 515.48.07-1

https://nvidia.custhelp.com/app/answers/detail/a_id/5415

CVE-2022-34670  NVIDIA GPU Display Driver for Linux contains a
vulnerability in the kernel mode layer handler, where an unprivileged
regular user can cause truncation errors when casting a primitive to a
primitive of smaller size causes data to be lost in the conversion,
which may lead to denial of service or information disclosure.

CVE-2022-42263  NVIDIA GPU Display Driver for Linux contains a
vulnerability in the kernel mode layer handler, where an Integer
overflow may lead to denial of service or information disclosure.

CVE-2022-34676  NVIDIA GPU Display Driver for Linux contains a
vulnerability in the kernel mode layer handler, where an out-of-bounds
read may lead to denial of service, information disclosure, or data
tampering.

CVE-2022-42264  NVIDIA GPU Display Driver for Linux contains a
vulnerability in the kernel mode layer, where an unprivileged regular
user can cause the use of an out-of-range pointer offset, which may lead
to data tampering, data loss, information disclosure, or denial of
service.

CVE-2022-34674  NVIDIA GPU Display Driver for Linux contains a
vulnerability in the kernel mode layer handler, where a helper function
maps more physical pages than were requested, which may lead to
undefined behavior or an information leak.

CVE-2022-34678  NVIDIA GPU Display Driver for Windows and Linux contains
a vulnerability in the kernel mode layer, where an unprivileged user can
cause a null-pointer dereference, which may lead to denial of service.

CVE-2022-34679  NVIDIA GPU Display Driver for Linux contains a
vulnerability in the kernel mode layer handler, where an unhandled
return value can lead to a null-pointer dereference, which may lead to
denial of service.

CVE-2022-34680  NVIDIA GPU Display Driver for Linux contains a
vulnerability in the kernel mode layer handler, where an integer
truncation can lead to an out-of-bounds read, which may lead to denial
of service.

CVE-2022-34677  NVIDIA GPU Display Driver for Linux contains a
vulnerability in the kernel mode layer handler, where an unprivileged
regular user can cause an integer to be truncated, which may lead to
denial of service or data tampering.

CVE-2022-34682  NVIDIA GPU Display Driver for Linux contains a
vulnerability in the kernel mode layer, where an unprivileged regular
user can cause a null-pointer dereference, which may lead to denial of
service.

CVE-2022-42257  NVIDIA GPU Display Driver for Linux contains a
vulnerability in the kernel mode layer (nvidia.ko), where an integer
overflow may lead to information disclosure, data tampering or denial of
service.

CVE-2022-42265  NVIDIA GPU Display Driver for Linux contains a
vulnerability in the kernel mode layer (nvidia.ko), where an integer
overflow may lead to information disclosure or data tampering.

CVE-2022-34684  NVIDIA GPU Display Driver for Linux contains a
vulnerability in the kernel mode layer (nvidia.ko), where an off-by-one
error may lead to data tampering or information disclosure.

CVE-2022-42254  NVIDIA GPU Display Driver for Linux contains a
vulnerability in the kernel mode layer (nvidia.ko), where an
out-of-bounds array access may lead to denial of service, data
tampering, or information disclosure.

CVE-2022-42258  NVIDIA GPU Display Driver for Linux contains a
vulnerability in the kernel mode layer (nvidia.ko), where an integer
overflow may lead to denial of service, data tampering, or information
disclosure.

CVE-2022-42255  NVIDIA GPU Display Driver for Linux contains a
vulnerability in the kernel mode layer (nvidia.ko), where an
out-of-bounds array access may lead to denial of service, information
disclosure, or data tampering.

CVE-2022-42256  NVIDIA GPU Display Driver for Linux contains a
vulnerability in the kernel mode layer (nvidia.ko), where an integer
overflow in index validation may lead to denial of service, information
disclosure, or data tampering.

CVE-2022-34673  NVIDIA GPU Display Driver for Linux contains a
vulnerability in the kernel mode layer (nvidia.ko), where an
out-of-bounds array access may lead to denial of service, information
disclosure, or data tampering.

CVE-2022-42259  NVIDIA GPU Display Driver for Linux contains a
vulnerability in the kernel mode layer (nvidia.ko), where an integer
overflow may lead to denial of service.


Linux Driver Branch     CVE IDs Addressed
R515    CVE-2022-34670, CVE-2022-34673, CVE-2022-34674, CVE-2022-34675,
        CVE-2022-34677, CVE-2022-34679, CVE-2022-34680, CVE-2022-34682,
        CVE-2022-34684, CVE-2022-42254, CVE-2022-42255, CVE-2022-42256,
        CVE-2022-42257, CVE-2022-42258, CVE-2022-42259, CVE-2022-42263,
        CVE-2022-42264, CVE-2022-42265
R510    CVE-2022-34670, CVE-2022-34674, CVE-2022-34675, CVE-2022-34677,
        CVE-2022-34679, CVE-2022-34680, CVE-2022-34682, CVE-2022-34684,
        CVE-2022-42254, CVE-2022-42255, CVE-2022-42256, CVE-2022-42257,
        CVE-2022-42258, CVE-2022-42259, CVE-2022-42260, CVE-2022-42261,
        CVE-2022-42262, CVE-2022-42263, CVE-2022-42264
R470    CVE-2022-34670, CVE-2022-34674, CVE-2022-34675, CVE-2022-34677,
        CVE-2022-34679, CVE-2022-34680, CVE-2022-34682, CVE-2022-42254,
        CVE-2022-42255, CVE-2022-42256, CVE-2022-42257, CVE-2022-42258,
        CVE-2022-42259, CVE-2022-42260, CVE-2022-42261, CVE-2022-42262,
        CVE-2022-42263, CVE-2022-42264
R450    CVE-2022-34670, CVE-2022-34674, CVE-2022-34675, CVE-2022-34677,
        CVE-2022-34679, CVE-2022-34680, CVE-2022-34682, CVE-2022-42254,
        CVE-2022-42256, CVE-2022-42257, CVE-2022-42258, CVE-2022-42259,
        CVE-2022-42260, CVE-2022-42261, CVE-2022-42262, CVE-2022-42263,
        CVE-2022-42264
R390    CVE-2022-34670, CVE-2022-34674, CVE-2022-34675, CVE-2022-34677,
        CVE-2022-34680, CVE-2022-42257, CVE-2022-42258, CVE-2022-42259


Andreas

--- End Message ---

--- Begin Message ---

Source: nvidia-graphics-drivers-tesla
Source-Version: 510.108.03-1
Done: Andreas Beckmann <a...@debian.org>

We believe that the bug you reported is fixed in the latest version of
nvidia-graphics-drivers-tesla, which is due to be installed in the Debian FTP 
archive.

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to 1025...@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Andreas Beckmann <a...@debian.org> (supplier of updated 
nvidia-graphics-drivers-tesla package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmas...@ftp-master.debian.org)


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Tue, 13 Dec 2022 11:13:15 +0100
Source: nvidia-graphics-drivers-tesla
Architecture: source
Version: 510.108.03-1
Distribution: unstable
Urgency: medium
Maintainer: Debian NVIDIA Maintainers <pkg-nvidia-de...@lists.alioth.debian.org>
Changed-By: Andreas Beckmann <a...@debian.org>
Closes: 1025279 1025286 1025287 1025382
Changes:
 nvidia-graphics-drivers-tesla (510.108.03-1) unstable; urgency=medium
 .
   * Rebuild as Tesla driver.
     (Closes: #1025287)
 .
 nvidia-graphics-drivers-tesla-510 (510.108.03-1) UNRELEASED; urgency=medium
 .
   * Rebuild as Tesla 510 driver.
     (Closes: #1025286, #1025382)
 .
 nvidia-graphics-drivers (510.108.03-1) unstable; urgency=medium
 .
   * New upstream production branch release 510.108.03 (2022-11-22).
     * Fixed CVE-2022-34670, CVE-2022-34674, CVE-2022-34675, CVE-2022-34677,
       CVE-2022-34679, CVE-2022-34680, CVE-2022-34682, CVE-2022-34684,
       CVE-2022-42254, CVE-2022-42255, CVE-2022-42256, CVE-2022-42257,
       CVE-2022-42258, CVE-2022-42259, CVE-2022-42260, CVE-2022-42261,
       CVE-2022-42262, CVE-2022-42263, CVE-2022-42264.  (Closes: #1025279)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5415
     * Improved compatibility with recent Linux kernels.
 .
   [ Andreas Beckmann ]
   * Refresh patches.
   * Update nv-readme.ids.
   * Add missing #includes to fix kernel module build for ppc64el.
   * Rename the internally used ARCH variable which might clash on externally
     set values.
   * Use substitutions for ${nvidia-kernel} and friends.
   * Try to compile a kernel module at package build time.
Checksums-Sha1:
 8df94fec8d62e6c16fbb6da866e23b940abbeed2 7540 
nvidia-graphics-drivers-tesla_510.108.03-1.dsc
 eccb76b359e345ca31ad3ac8d45f6c542cb38165 329586519 
nvidia-graphics-drivers-tesla_510.108.03.orig-amd64.tar.gz
 d5144bed730975a2f10f85b13b4cd29b4fa07d83 211446103 
nvidia-graphics-drivers-tesla_510.108.03.orig-arm64.tar.gz
 ff84a38e81176ed301bad56083f16237c90ab709 72732659 
nvidia-graphics-drivers-tesla_510.108.03.orig-ppc64el.tar.gz
 50eb57e8cc8d66bce92783493455aedac0517018 140 
nvidia-graphics-drivers-tesla_510.108.03.orig.tar.gz
 5ebed4d0669087a7718693a360d520bb506ac608 212764 
nvidia-graphics-drivers-tesla_510.108.03-1.debian.tar.xz
 ccbb054476ada50ee6e69d5cbfd75fe5982cbf48 5772 
nvidia-graphics-drivers-tesla_510.108.03-1_source.buildinfo
Checksums-Sha256:
 e3faec3050f8892093ef16796fde909143bc063c8c2eb45d58cff4a9ce36f11f 7540 
nvidia-graphics-drivers-tesla_510.108.03-1.dsc
 ccd9c04ff14c059c10a802783b3933d439f67ca38f64ff57aab76bfccccde97b 329586519 
nvidia-graphics-drivers-tesla_510.108.03.orig-amd64.tar.gz
 a898d383cec2ef2397b9107a9b41b03e304a93c1fe477f6c0373f1852b142e42 211446103 
nvidia-graphics-drivers-tesla_510.108.03.orig-arm64.tar.gz
 89ff2bd88597f29ddb374478b2b417b04fcb930b908f2b2e75ba0a27736ffb29 72732659 
nvidia-graphics-drivers-tesla_510.108.03.orig-ppc64el.tar.gz
 2ca5c56cb2a2c4002fdd4393293ec82f75f19914af6b84415f3c3331697d0c10 140 
nvidia-graphics-drivers-tesla_510.108.03.orig.tar.gz
 f2226f4bcef76782e8da540970e7188930af8933b5fcfb48c16d28f48f6607c4 212764 
nvidia-graphics-drivers-tesla_510.108.03-1.debian.tar.xz
 8634dd7b2315e6b17b5fdd0fa13ca6a9c83fe2044410f984a14ec8edfe613ad0 5772 
nvidia-graphics-drivers-tesla_510.108.03-1_source.buildinfo
Files:
 39762a10b1d78c99d4b9b14433904f60 7540 non-free/libs optional 
nvidia-graphics-drivers-tesla_510.108.03-1.dsc
 c4b2c19d23899bd5a5ffb166b00382a5 329586519 non-free/libs optional 
nvidia-graphics-drivers-tesla_510.108.03.orig-amd64.tar.gz
 eb9c95baefecde57f1398361a63c15b9 211446103 non-free/libs optional 
nvidia-graphics-drivers-tesla_510.108.03.orig-arm64.tar.gz
 4908ea343bfea7059baef4c4bd808f62 72732659 non-free/libs optional 
nvidia-graphics-drivers-tesla_510.108.03.orig-ppc64el.tar.gz
 082e49a566b88ee5156557b4c0333b41 140 non-free/libs optional 
nvidia-graphics-drivers-tesla_510.108.03.orig.tar.gz
 878d05a0841116b14cc33a64364f2d9e 212764 non-free/libs optional 
nvidia-graphics-drivers-tesla_510.108.03-1.debian.tar.xz
 cb7120315fa1a38f8a78885d675f8a69 5772 non-free/libs optional 
nvidia-graphics-drivers-tesla_510.108.03-1_source.buildinfo

-----BEGIN PGP SIGNATURE-----
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=B9JU
-----END PGP SIGNATURE-----

--- End Message ---

Reply via email to