Wednesday, April 11, 2012

Nvidia driver that fixes a security vulnerability released

Nvidia announced today a release of an updated version (295.40) of the Nvidia Unix driver that fixes a security vulnerability (see http://www.nvnews.net/vbulletin/showthread.php?t=178006 and Nvidia knowledgebase for details). Here is a brief description:

"The vulnerability makes it possible for attackers with read/write access to the GPU device nodes to access arbitrary system memory, NVIDIA recommends that users of the NVIDIA Linux, Solaris, and FreeBSD drivers with Geforce 8 or newer, G80 Quadro or newer, or any Tesla GPU update their drivers to version 295.40 or later."

We (Phil Perry, maintainer of the nvidia driver packages) released the ELRepo packages with this driver version 295.40 for both EL5 and EL6.

*EL5*
kmod-nvidia-295.40-1.el5.elrepo.i686.rpm
kmod-nvidia-PAE-295.40-1.el5.elrepo.i686.rpm
kmod-nvidia-295.40-1.el5.elrepo.x86_64.rpm
nvidia-x11-drv-295.40-1.el5.elrepo.i386.rpm
nvidia-x11-drv-295.40-1.el5.elrepo.x86_64.rpm
nvidia-x11-drv-32bit-295.40-1.el5.elrepo.x86_64.rpm

*EL6*
kmod-nvidia-295.40-1.el6.elrepo.i686.rpm
kmod-nvidia-295.40-1.el6.elrepo.x86_64.rpm
nvidia-x11-drv-295.40-1.el6.elrepo.i686.rpm
nvidia-x11-drv-295.40-1.el6.elrepo.x86_64.rpm
nvidia-x11-drv-32bit-295.40-1.el6.elrepo.x86_64.rpm

All Nvidia driver users are advised to update to this version as soon as possible.

No comments:

Post a Comment