Description

NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel mode layer, where sign conversion issuescasting an unsigned primitive to signed may lead to denial of service or information disclosure.

Related CPE's

a

nvidia

virtual_gpu

3

o

citrix

hypervisor

-

o

redhat

enterprise_linux_kernel-based_virtual_machine

-

o

vmware

vsphere

-

References

https://nvidia.custhelp.com/app/answers/detail/a_id/5452

Vendor Advisory

https://security.gentoo.org/glsa/202310-02

Third Party Advisory

Weaknesses

[email protected]

Primary
CWE-681

[email protected]

Secondary
CWE-196

CVSS impact metrics

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

7.1 · High

  • CVSS V3.1

  • CVSS V3.0

  • CVSS V2.0

Information

Source identifier

[email protected]

Vulnerability status

Analyzed

Published

2023-04-01T05:15:07.927

2 years ago

Last modified

2023-10-19T01:28:05.460

1 year ago