[Git][security-tracker-team/security-tracker][master] new nvidia issues

Moritz Muehlenhoff (@jmm) Sat, 18 Oct 2025 08:06:46 -0700


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / 
security-tracker



Commits:
cfe4e9e8 by Moritz Muehlenhoff at 2025-10-12T16:14:03+02:00
new nvidia issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -365,11 +365,57 @@ CVE-2025-25018 (Improper Neutralization of Input During 
Web Page Generation in K
 CVE-2025-25017 (Improper Neutralization of Input During Web Page Generation in 
Kibana  ...)
        - kibana <itp> (bug #700337)
 CVE-2025-23309 (NVIDIA Display Driver contains a vulnerability where an 
uncontrolled D ...)
-       TODO: check
+       NOT-FOR-US: NVIDIA display drivers for Windows
 CVE-2025-23282 (NVIDIA Display Driver for Linux contains a vulnerability where 
an atta ...)
-       TODO: check
+       - nvidia-graphics-drivers <unfixed>
+       [trixie] - nvidia-graphics-drivers <no-dsa> (Non-free not supported)
+       [bookworm] - nvidia-graphics-drivers <no-dsa> (Non-free not supported)
+       - nvidia-graphics-drivers-legacy-340xx <unfixed>
+       - nvidia-graphics-drivers-legacy-390xx <unfixed>
+       - nvidia-graphics-drivers-tesla-418 <unfixed>
+       - nvidia-graphics-drivers-tesla-450 450.248.02-4
+       NOTE: 450.248.02-4 turned the package into a metapackage to aid 
switching to nvidia-graphics-drivers-tesla-470
+       - nvidia-graphics-drivers-tesla-460 460.106.00-3
+       NOTE: 460.106.00-3 turned the package into a metapackage to aid 
switching to nvidia-graphics-drivers-tesla-470
+       - nvidia-graphics-drivers-tesla-470 <unfixed>
+       [bookworm] - nvidia-graphics-drivers-tesla-470 <no-dsa> (Non-free not 
supported)
+       [bullseye] - nvidia-graphics-drivers-tesla-470 <ignored> (Non-free not 
supported)
+       - nvidia-graphics-drivers-tesla 525.147.05-6
+       NOTE: 525.147.05-6 turned the package into a metapackage to aid 
switching to nvidia-graphics-drivers
+       - nvidia-open-gpu-kernel-modules <unfixed>
+       [trixie] - nvidia-open-gpu-kernel-modules <no-dsa> (Contrib not 
supported)
+       [bookworm] - nvidia-open-gpu-kernel-modules <no-dsa> (Contrib not 
supported)
+       [experimental] - nvidia-graphics-drivers-tesla-535 535.261.03-1
+       - nvidia-graphics-drivers-tesla-535 <unfixed>
+       [trixie] - nvidia-graphics-drivers-tesla-535 <no-dsa> (Non-free not 
supported)
+       [bookworm] - nvidia-graphics-drivers-tesla-535 <no-dsa> (Non-free not 
supported)
+       - nvidia-graphics-drivers-tesla-550 <unfixed>
+       NOTE: https://nvidia.custhelp.com/app/answers/detail/a_id/5703
 CVE-2025-23280 (NVIDIA Display Driver for Linux contains a vulnerability where 
an atta ...)
-       TODO: check
+       - nvidia-graphics-drivers <unfixed>
+       [trixie] - nvidia-graphics-drivers <no-dsa> (Non-free not supported)
+       [bookworm] - nvidia-graphics-drivers <no-dsa> (Non-free not supported)
+       - nvidia-graphics-drivers-legacy-340xx <unfixed>
+       - nvidia-graphics-drivers-legacy-390xx <unfixed>
+       - nvidia-graphics-drivers-tesla-418 <unfixed>
+       - nvidia-graphics-drivers-tesla-450 450.248.02-4
+       NOTE: 450.248.02-4 turned the package into a metapackage to aid 
switching to nvidia-graphics-drivers-tesla-470
+       - nvidia-graphics-drivers-tesla-460 460.106.00-3
+       NOTE: 460.106.00-3 turned the package into a metapackage to aid 
switching to nvidia-graphics-drivers-tesla-470
+       - nvidia-graphics-drivers-tesla-470 <unfixed>
+       [bookworm] - nvidia-graphics-drivers-tesla-470 <no-dsa> (Non-free not 
supported)
+       [bullseye] - nvidia-graphics-drivers-tesla-470 <ignored> (Non-free not 
supported)
+       - nvidia-graphics-drivers-tesla 525.147.05-6
+       NOTE: 525.147.05-6 turned the package into a metapackage to aid 
switching to nvidia-graphics-drivers
+       - nvidia-open-gpu-kernel-modules <unfixed>
+       [trixie] - nvidia-open-gpu-kernel-modules <no-dsa> (Contrib not 
supported)
+       [bookworm] - nvidia-open-gpu-kernel-modules <no-dsa> (Contrib not 
supported)
+       [experimental] - nvidia-graphics-drivers-tesla-535 535.261.03-1
+       - nvidia-graphics-drivers-tesla-535 <unfixed>
+       [trixie] - nvidia-graphics-drivers-tesla-535 <no-dsa> (Non-free not 
supported)
+       [bookworm] - nvidia-graphics-drivers-tesla-535 <no-dsa> (Non-free not 
supported)
+       - nvidia-graphics-drivers-tesla-550 <unfixed>
+       NOTE: https://nvidia.custhelp.com/app/answers/detail/a_id/5703
 CVE-2025-11618 (A missing validation check in FreeRTOS-Plus-TCP's UDP/IPv6 
packet proc ...)
        NOT-FOR-US: Amazon
 CVE-2025-11617 (A missing validation check in FreeRTOS-Plus-TCP's IPv6 packet 
processi ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/cfe4e9e8a47e9d34cbfacd38b6625a5a1028e1df

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/cfe4e9e8a47e9d34cbfacd38b6625a5a1028e1df
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

[Git][security-tracker-team/security-tracker][master] new nvidia issues

Reply via email to