Your message dated Sat, 30 Jan 2021 22:47:08 +0000 with message-id <e1l5z1i-000bnv...@fasolo.debian.org> and subject line Bug#979670: fixed in nvidia-graphics-drivers 418.181.07-1 has caused the Debian Bug report #979670, regarding nvidia-graphics-drivers: CVE-2021-1052, CVE-2021-1053, CVE-2021-1056 to be marked as done.
This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 979670: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=979670 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems
--- Begin Message ---Source: nvidia-graphics-drivers Severity: serious Tags: security upstream Control: clone -1 -2 -3 -4 -5 -6 Control: reassign -2 src:nvidia-graphics-drivers-legacy-340xx Control: retitle -2 nvidia-graphics-drivers-legacy-340xx: CVE‑2021‑1056 Control: reassign -3 src:nvidia-graphics-drivers-legacy-390xx Control: retitle -3 nvidia-graphics-drivers-legacy-390xx: CVE‑2021‑1056 Control: reassign -4 src:nvidia-graphics-drivers-tesla-418 Control: retitle -4 nvidia-graphics-drivers-tesla-418: CVE‑2021‑1056 Control: reassign -5 src:nvidia-graphics-drivers-tesla-440 Control: retitle -5 nvidia-graphics-drivers-tesla-440: CVE‑2021‑1056 Control: reassign -6 src:nvidia-graphics-drivers-tesla-450 Control: retitle -6 nvidia-graphics-drivers-tesla-450: CVE‑2021‑1052, CVE‑2021‑1053, CVE‑2021‑1056 Control: found -1 340.24-1 Control: found -1 343.22-1 Control: found -1 396.18-1 Control: found -1 430.14-1 Control: found -1 450.51-1 Control: found -1 455.23.04-1 https://nvidia.custhelp.com/app/answers/detail/a_id/5142 CVE‑2021‑1052 NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgkDdiEscape or IOCTL in which user-mode clients can access legacy privileged APIs, which may lead to denial of service, escalation of privileges, and information disclosure. CVE‑2021‑1053 NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgkDdiEscape or IOCTL in which improper validation of a user pointer may lead to denial of service. CVE‑2021‑1056 NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel mode layer (nvidia.ko) in which it does not completely honor operating system file system permissions to provide GPU device-level isolation, which may lead to denial of service or information disclosure. CVE‑2021‑1052 and CVE‑2021‑1053 affect R460 and R450 driver branches only. Andreas
--- End Message ---
--- Begin Message ---Source: nvidia-graphics-drivers Source-Version: 418.181.07-1 Done: Andreas Beckmann <a...@debian.org> We believe that the bug you reported is fixed in the latest version of nvidia-graphics-drivers, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to 979...@bugs.debian.org, and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Andreas Beckmann <a...@debian.org> (supplier of updated nvidia-graphics-drivers package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing ftpmas...@ftp-master.debian.org) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Sat, 23 Jan 2021 19:12:36 +0100 Source: nvidia-graphics-drivers Architecture: source Version: 418.181.07-1 Distribution: buster Urgency: medium Maintainer: Debian NVIDIA Maintainers <pkg-nvidia-de...@lists.alioth.debian.org> Changed-By: Andreas Beckmann <a...@debian.org> Closes: 979670 Changes: nvidia-graphics-drivers (418.181.07-1) buster; urgency=medium . * New upstream Tesla release 418.181.07 (2021-01-19). * Fixed CVE-2021-1056. (Closes: #979670) https://nvidia.custhelp.com/app/answers/detail/a_id/5142 * Improved compatibility with recent Linux kernels. . [ Andreas Beckmann ] * Refresh patches. * Allow alternative libnvidia-{tesla,legacy}-*-cfg1 packages to substitute libnvidia-cfg1 in third-party packages (450.57-2). - Add Provides: libnvidia-cfg.so.1 (= ${nvidia:Version}). - Generate alternative versioned dependency on libnvidia-cfg.so.1 through the symbols file. * Test that the patches can be applied to the module source (450.66-1). * nvidia-kernel-dkms: Ship with unapplied patches and apply the patches while building kernel modules (450.66-1). * Simplify generating the -source and -dkms packages (450.66-1). * Bump watch file version to 4. * Bump Standards-Version to 4.5.1. No changes needed. * Upload to buster. . [ Vincent Cheng ] * Remove myself from Uploaders. . nvidia-graphics-drivers (418.165.02-2) UNRELEASED; urgency=medium . * Backport drm_prime_pages_to_sg_has_drm_device_arg and get_dma_ops changes from 455.45.01 to fix kernel module build for Linux 5.10. . nvidia-graphics-drivers (418.165.02-1) UNRELEASED; urgency=medium . * New upstream Tesla release 418.165.02 (2020-09-30). . [ Andreas Beckmann ] * Backport get_user_pages_remote, vga_tryget, smp_read_barrier_depends, drm_driver_has_gem_free_object, drm_display_mode_has_vrefresh, drm_driver_master_set_has_int_return_type and drm_gem_object_put_unlocked changes from 455.23.04 to fix kernel module build for Linux 5.9. * Refresh patches. * Update lintian overrides. . nvidia-graphics-drivers (418.152.00-2) UNRELEASED; urgency=medium . * Backport nv_vmalloc and nv_mmap_* (mmap_{sem=>lock}) changes from 450.57 to fix kernel module build for Linux 5.8. Checksums-Sha1: 5764d48bc70470ef8cac2d13bd65b6da8c6ddec4 6618 nvidia-graphics-drivers_418.181.07-1.dsc b2df9a86e485dc29ab4b73474135e6c324b2cfb5 109810431 nvidia-graphics-drivers_418.181.07.orig-amd64.tar.gz bcecb7b284de3faacbc9233cfec601cf39904095 140 nvidia-graphics-drivers_418.181.07.orig.tar.gz bcfb06691498fdf23da4529702b9287db9a99514 191140 nvidia-graphics-drivers_418.181.07-1.debian.tar.xz 6b6fb913f14eada0e4c27eb285f77fb69a366d0f 7703 nvidia-graphics-drivers_418.181.07-1_source.buildinfo Checksums-Sha256: 4183a1fe00f1a1639f3403967dd1c2d113f6c37285a03eb24286a1ca45d50ae7 6618 nvidia-graphics-drivers_418.181.07-1.dsc 16f0995e4e05a83f529db001061bb7edfa3fab7efcd7d7087e5e90e28cb752d5 109810431 nvidia-graphics-drivers_418.181.07.orig-amd64.tar.gz 4b51e914652cbeca1fa3cc944ba7925b03ba1ac5d6a62361ebd4b703ae70532e 140 nvidia-graphics-drivers_418.181.07.orig.tar.gz b0a6c6d5e393f9bb6286fefee7cf2289ead51abfa6c74e1b01de28a2011bf598 191140 nvidia-graphics-drivers_418.181.07-1.debian.tar.xz 91002c4809c3f43bc4e5893d6e598e6ebdd87c24aa24f6b8dcfecd8b0a20d0e5 7703 nvidia-graphics-drivers_418.181.07-1_source.buildinfo Files: ac412590cc14082327cd12c1ec74d13b 6618 non-free/libs optional nvidia-graphics-drivers_418.181.07-1.dsc d451f2a65bd45618e9bd486c6236d33e 109810431 non-free/libs optional nvidia-graphics-drivers_418.181.07.orig-amd64.tar.gz f06b0fa9bf9b8513453c662c909bca95 140 non-free/libs optional nvidia-graphics-drivers_418.181.07.orig.tar.gz ad733022c8285dcb70758cf8456456c5 191140 non-free/libs optional nvidia-graphics-drivers_418.181.07-1.debian.tar.xz 5fd2a1d0e39adad0065410ff3952e85b 7703 non-free/libs optional nvidia-graphics-drivers_418.181.07-1_source.buildinfo -----BEGIN PGP SIGNATURE----- iQJEBAEBCAAuFiEE6/MKMKjZxjvaRMaUX7M/k1np7QgFAmAMZ24QHGFuYmVAZGVi aWFuLm9yZwAKCRBfsz+TWentCCMoEACWP7htl/DPx5Q3TW67UAPiMSHXT286CXGD dYmtaaxBgUPdXjWVTe6QeeKVmC/36igfKIwRpSFwhUEpWH4t+MCJsyA3sAOL9OUe Ho68Pb+zfq9WU/BiRP8IZsCXGnqA33VXmH8YTEf0nBwaMC2sClW+/ez4woIK/IcO ouEu6GUbdqGIxoa6Fd3U0yDKN7Jh+m09WiCom85+TEmaqOKZ3w7mBCYT0LYf7xSu jY8ilaR9QxAzG/3jl2NHihFODwPttEu4rXonikg0gFiif2XasCTW9KG7kxgO/ORx uAjUJhyzvQoSnv9+o3bmQ0vOGqomduL9bF/gJ1QDYrpl8UCJFe8SnAiadGZf4aCG n/TNnZ5Qwi7OLs/gbHqFg7zfnhsvtdNT5qwU74kEdPPPqezux+Uny2lZN7HYZrsq 9cUK5fm4t8p3R6vhAD/jlhQHWNmOEsO5fSgdXGV23No5NU1Va1MSQREYhEi2Y/7/ Fhqbd9ausFh92aw7CfFWXaFo17ydiUvD73fq5eTlOJHpXw6phXRt04Qs3N3I2YZp JAFInRvXOBCpt1ciKhs746CEnAhES8WiMdZUuFcnvNhLbs/C6VTV8IeOwDfkGkUL AQ2r5FBoVrkdKLRsRH7AYpRSVNZrS/7zhiEy9dXMw6fWR/71xy7W/uVC4eup0b4p 0fN36/oaDQ== =wlxg -----END PGP SIGNATURE-----
--- End Message ---
