Bug 1195208 - VUL-0: kernel-source,kernel-source-rt,kernel-source-azure: kernel: NVIDIA driver improper access control may lead to code execution
VUL-0: kernel-source,kernel-source-rt,kernel-source-azure: kernel: NVIDIA dri...
Status: RESOLVED DUPLICATE of bug 1194896
Classification: Novell Products
Product: SUSE Security Incidents
Classification: Novell Products
Component: Incidents
unspecified
Other Other
: P5 - None : Normal
: ---
Assigned To: Kernel Bugs
Security Team bot
https://smash.suse.de/issue/321789/
:
Depends on:
Blocks:
  Show dependency treegraph
 
Reported: 2022-01-27 12:00 UTC by Robert Frohl
Modified: 2022-01-27 12:30 UTC (History)
1 user (show)

See Also:
Found By: Security Response Team
Services Priority:
Business Priority:
Blocker: ---
Marketing QA Status: ---
IT Deployment: ---


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description Robert Frohl 2022-01-27 12:00:15 UTC
rh#2044512

NVIDIA Linux kernel distributions contain a vulnerability in nvmap
NVGPU_IOCTL_CHANNEL_SET_ERROR_NOTIFIER, where improper access control may lead
to code execution, compromised integrity, or denial of service.

References:

https://nvidia.custhelp.com/app/answers/detail/a_id/5259

References:
https://bugzilla.redhat.com/show_bug.cgi?id=2044512
Comment 1 Robert Frohl 2022-01-27 12:01:50 UTC
nvida specific code