Your message dated Thu, 14 Jan 2021 23:50:03 +0000 with message-id <e1l0cnp-0002hy...@fasolo.debian.org> and subject line Bug#979670: fixed in nvidia-graphics-drivers 460.32.03-1 has caused the Debian Bug report #979670, regarding nvidia-graphics-drivers: CVE‑2021‑1052, CVE‑2021‑1053, CVE‑2021‑1056 to be marked as done.
This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 979670: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=979670 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems
--- Begin Message ---Source: nvidia-graphics-drivers Severity: serious Tags: security upstream Control: clone -1 -2 -3 -4 -5 -6 Control: reassign -2 src:nvidia-graphics-drivers-legacy-340xx Control: retitle -2 nvidia-graphics-drivers-legacy-340xx: CVE‑2021‑1056 Control: reassign -3 src:nvidia-graphics-drivers-legacy-390xx Control: retitle -3 nvidia-graphics-drivers-legacy-390xx: CVE‑2021‑1056 Control: reassign -4 src:nvidia-graphics-drivers-tesla-418 Control: retitle -4 nvidia-graphics-drivers-tesla-418: CVE‑2021‑1056 Control: reassign -5 src:nvidia-graphics-drivers-tesla-440 Control: retitle -5 nvidia-graphics-drivers-tesla-440: CVE‑2021‑1056 Control: reassign -6 src:nvidia-graphics-drivers-tesla-450 Control: retitle -6 nvidia-graphics-drivers-tesla-450: CVE‑2021‑1052, CVE‑2021‑1053, CVE‑2021‑1056 Control: found -1 340.24-1 Control: found -1 343.22-1 Control: found -1 396.18-1 Control: found -1 430.14-1 Control: found -1 450.51-1 Control: found -1 455.23.04-1 https://nvidia.custhelp.com/app/answers/detail/a_id/5142 CVE‑2021‑1052 NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgkDdiEscape or IOCTL in which user-mode clients can access legacy privileged APIs, which may lead to denial of service, escalation of privileges, and information disclosure. CVE‑2021‑1053 NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgkDdiEscape or IOCTL in which improper validation of a user pointer may lead to denial of service. CVE‑2021‑1056 NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel mode layer (nvidia.ko) in which it does not completely honor operating system file system permissions to provide GPU device-level isolation, which may lead to denial of service or information disclosure. CVE‑2021‑1052 and CVE‑2021‑1053 affect R460 and R450 driver branches only. Andreas
--- End Message ---
--- Begin Message ---Source: nvidia-graphics-drivers Source-Version: 460.32.03-1 Done: Andreas Beckmann <a...@debian.org> We believe that the bug you reported is fixed in the latest version of nvidia-graphics-drivers, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to 979...@bugs.debian.org, and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Andreas Beckmann <a...@debian.org> (supplier of updated nvidia-graphics-drivers package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing ftpmas...@ftp-master.debian.org) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Fri, 15 Jan 2021 00:23:35 +0100 Source: nvidia-graphics-drivers Architecture: source Version: 460.32.03-1 Distribution: unstable Urgency: medium Maintainer: Debian NVIDIA Maintainers <pkg-nvidia-de...@lists.alioth.debian.org> Changed-By: Andreas Beckmann <a...@debian.org> Closes: 979670 Changes: nvidia-graphics-drivers (460.32.03-1) unstable; urgency=medium . * New upstream production branch release 460.32.03 (2021-01-07). * Fixed CVE-2021-1052, CVE-2021-1053, CVE-2021-1056. (Closes: #979670) https://nvidia.custhelp.com/app/answers/detail/a_id/5142 - Added a new "NoInterlacedModes" token to the NVIDIA X driver's "ModeValidation" option, to allow preventing interlaced modes from being validated. Refer to the "X Config Options" appendix of the driver README for further details. - Added support for the following GPU: A40. . [ Andreas Beckmann ] * Update nv-readme.ids. * Refresh patches. * Update symbols files. * Upload to unstable. Checksums-Sha1: c30ca76ca220779004472e5cd1745c975297629e 6692 nvidia-graphics-drivers_460.32.03-1.dsc 73c46f805ec97c81bff7004aaf211f6b1244d3dc 178068624 nvidia-graphics-drivers_460.32.03.orig-amd64.tar.gz c083d3f8ab6688943c7b06128447fc1696ad9c4d 112436680 nvidia-graphics-drivers_460.32.03.orig-arm64.tar.gz c12c02af30e9106c443d4d644faee9b2983deaee 139 nvidia-graphics-drivers_460.32.03.orig.tar.gz bf320241727d91692a8335d5c079df662c07e9d4 198524 nvidia-graphics-drivers_460.32.03-1.debian.tar.xz 60310246a2f4752f907330e1230a87b1fd13f722 7923 nvidia-graphics-drivers_460.32.03-1_source.buildinfo Checksums-Sha256: 273ac649f806961a99af3f4cd7d43df279e7c7e384c654811b7a9f16e56c33d9 6692 nvidia-graphics-drivers_460.32.03-1.dsc b4d0a71c4b978ce65a9808579b94f56dc3a8b52792cfff541a817bab94ffc00e 178068624 nvidia-graphics-drivers_460.32.03.orig-amd64.tar.gz 21ca4dea7b3414640ab12795e0e1c97eb33c43906948ebe13fb3d951ac5ae619 112436680 nvidia-graphics-drivers_460.32.03.orig-arm64.tar.gz 1d25d5ae4b089dee447852b32a13530e222c68607b29aef0ced96ca9efc2eb80 139 nvidia-graphics-drivers_460.32.03.orig.tar.gz 2690c01eeb15ddc1e8b58691814ab00f821c6d85e9ac9d285736bf1027c0ec98 198524 nvidia-graphics-drivers_460.32.03-1.debian.tar.xz f52cdc6f8cb05edec07b3a23eeecdfd95d99ce690eea081ffa8f24cc5eea80b2 7923 nvidia-graphics-drivers_460.32.03-1_source.buildinfo Files: f2614483f5ac45dd8236b3e3c4ffbed6 6692 non-free/libs optional nvidia-graphics-drivers_460.32.03-1.dsc dd1ce02c9ffe952c807677925298f70b 178068624 non-free/libs optional nvidia-graphics-drivers_460.32.03.orig-amd64.tar.gz 9de663f02ba29d6d07e8ffc03dcdbdc3 112436680 non-free/libs optional nvidia-graphics-drivers_460.32.03.orig-arm64.tar.gz b7c24eb652a22bb34ba4bc5aeef3d0b4 139 non-free/libs optional nvidia-graphics-drivers_460.32.03.orig.tar.gz eb02498f6a342c6f861cf6c5c41254a0 198524 non-free/libs optional nvidia-graphics-drivers_460.32.03-1.debian.tar.xz 03d4e77f9659e6f2a370bd6063d57377 7923 non-free/libs optional nvidia-graphics-drivers_460.32.03-1_source.buildinfo -----BEGIN PGP SIGNATURE----- iQJEBAEBCAAuFiEE6/MKMKjZxjvaRMaUX7M/k1np7QgFAmAA02AQHGFuYmVAZGVi aWFuLm9yZwAKCRBfsz+TWentCJPID/9r04pubMTjS+AqNNks6lwGGOj0j+anwAWO pwCqqb8WO/N3VAKkhAQFQYEHBlNrutIlP0Zc4Vzb0PawtrBqgluD06IeUQ5RVc/0 XIOuqNGsoV8l/TSUIRK19cvhrxz0f2gn+oU5F23ne3FpTMkkZfT0QiJ3x8SiyL5P rwYM9VlWsPnkd+4c10+7ee0BNVobypGu2iFTi1r3NcYtwgLIKJQOVwc+Ke1O29Po V8pV3CvgsroKGCCzimx7wyH8iY/GGZ0FhPoFEXDY+PsETYF73qXD60x2KAUU1JAQ S6Mma2v0qpO7z6yVqBheOyY2vdRU8/6C/9mOnDHHG4L+PvxvX13dbzjBy+nx5eHm kt5q7p/D7UcNXOfE0YVpSWHTtF8OZFPFjA0uyO0RvSHU4q1O12FqeuDVNplRXzQI hGh/kfjOtUxa1MpTx0qkth+O8brT5ZuXY5WKmDQiNb5dzNt+RvlEhpMggPevdINA D8hoEfq//MGhmLknN9kD7NoNlTXDghORHfSvoVQQUrhiBjZQGqkjoJDGXnpQKwAz QStd9/LdGEYPtz2FJ5flSgcSxoFJjIEQhRAq3CTtukVQvnNXcBwSzPwhOmEkvc4i TIS+wb5eqCeSDsW18HGpkJC4lj/cR7Ljh0uFEMURgrbqYipJlV+NjzqO6uVEtvDt dCiKPU2Lhg== =TnT1 -----END PGP SIGNATURE-----
--- End Message ---
