Your message dated Tue, 27 Apr 2021 17:19:24 +0000 with message-id <e1lbrmq-000bqw...@fasolo.debian.org> and subject line Bug#987216: fixed in nvidia-graphics-drivers 465.24.02-1 has caused the Debian Bug report #987216, regarding nvidia-graphics-drivers: CVE-2021-1076, CVE-2021-1077 to be marked as done.
This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 987216: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=987216 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems
--- Begin Message ---Source: nvidia-graphics-drivers Severity: serious Tags: security upstream Control: clone -1 -2 -3 -4 -5 -6 -7 Control: reassign -2 src:nvidia-graphics-drivers-legacy-340xx 340.76-6 Control: retitle -2 nvidia-graphics-drivers-legacy-340xx: CVE-2021-1076 Control: tag -2 + wontfix Control: reassign -3 src:nvidia-graphics-drivers-legacy-390xx 390.48-4 Control: retitle -3 nvidia-graphics-drivers-legacy-390xx: CVE-2021-1076 Control: reassign -4 src:nvidia-graphics-drivers-tesla-418 418.87.01-1 Control: retitle -4 nvidia-graphics-drivers-tesla-418: CVE-2021-1076 Control: reassign -5 src:nvidia-graphics-drivers-tesla-440 440.64.00-1 Control: retitle -5 nvidia-graphics-drivers-tesla-440: CVE-2021-1076 Control: tag -5 + wontfix Control: reassign -6 src:nvidia-graphics-drivers-tesla-450 450.51.05-1 Control: retitle -6 nvidia-graphics-drivers-tesla-450: CVE-2021-1076, CVE-2021-1077 Control: reassign -7 src:nvidia-graphics-drivers-tesla-460 460.32.03-1 Control: retitle -7 nvidia-graphics-drivers-tesla-460: CVE-2021-1076, CVE-2021-1077 Control: found -1 340.24-1 Control: found -1 343.22-1 Control: found -1 396.18-1 Control: found -1 430.14-1 Control: found -1 450.51-1 Control: found -1 455.23.04-1 https://nvidia.custhelp.com/app/answers/detail/a_id/5172 CVE‑2021‑1076 NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability in the kernel mode layer (nvlddmkm.sys or nvidia.ko) where improper access control may lead to denial of service, information disclosure, or data corruption. CVE‑2021‑1077 NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability where the software uses a reference count to manage a resource that is incorrectly updated, which may lead to denial of service. Driver Branch CVE IDs Addressed R465, R418, R390 CVE‑2021‑1076 R460, R450 CVE‑2021‑1076, CVE‑2021‑1077 Andreas
--- End Message ---
--- Begin Message ---Source: nvidia-graphics-drivers Source-Version: 465.24.02-1 Done: Andreas Beckmann <a...@debian.org> We believe that the bug you reported is fixed in the latest version of nvidia-graphics-drivers, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to 987...@bugs.debian.org, and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Andreas Beckmann <a...@debian.org> (supplier of updated nvidia-graphics-drivers package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing ftpmas...@ftp-master.debian.org) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Tue, 27 Apr 2021 18:48:53 +0200 Source: nvidia-graphics-drivers Architecture: source Version: 465.24.02-1 Distribution: experimental Urgency: medium Maintainer: Debian NVIDIA Maintainers <pkg-nvidia-de...@lists.alioth.debian.org> Changed-By: Andreas Beckmann <a...@debian.org> Closes: 987216 Changes: nvidia-graphics-drivers (465.24.02-1) experimental; urgency=medium . * New upstream new feature branch release 465.24.02 (2021-04-14). * Fixed CVE-2021-1076, CVE-2021-1077. (Closes: #987216) https://nvidia.custhelp.com/app/answers/detail/a_id/5172 * New upstream beta 465.19.01 (2021-03-30). - Improved X11 DrawText() performance when rendering stippled text. - Fixed a bug that could prevent some hardware configurations with large numbers of displays connected to the same GPU from working correctly. - Fixed a bug that could cause multi-threaded GLX applications to hang while attempting to handle an XError. - Fixed a potential crash in the Vulkan driver when clearing images with multiple layers. - Fixed a bug with the host-visible device-local memory heap, where if an allocation failed due to space constraints, it could cause the application to crash on future Vulkan function calls. - Fixed corruption in the Vulkan driver that sometimes occurred with shadow rendering with image arrays. - Added support for the VK_KHR_synchronization2 extension. - Added support for the VK_KHR_workgroup_memory_explicit_layout extension. - Added support for the VK_KHR_zero_initialize_workgroup_memory extension. - Added support for linear images for use with host-visible video memory in Vulkan. - Fixed an issue with OpenGL where imported Vulkan buffers would fail with GL_OUT_OF_MEMORY when marked as resident. - Fixed a bug that caused the NVIDIA driver to retain an incorrect memory mapping of the UEFI system console when booting with the kernel parameter pci=realloc. This could cause the console to corrupt memory in use by the NVIDIA driver, and vice versa. - Runtime D3 Power Management is now enabled by default on supported notebook systems with Ampere or newer GPUs. See the chapter titled "PCI-Express Runtime D3 (RTD3) Power Management" in the README for further details. - Updated the NVIDIA X driver to allow OpenGL applications running on an X server that has left the active virtual terminal (VT) to continue running on the GPU, but with a limited frame rate. This functionality is only enabled when the NVreg_PreserveVideoMemoryAllocations=1 nvidia module parameter is enabled. - Fix a Vulkan clamping bug where fragment depth values would not be clamped to the range [0,1] if VK_EXT_depth_range_unrestricted was not enabled. - Fix a bug related to SPIR-V 1.4 non-Input/Output entry point variables. - Fixed a bug in compilation of SPIR-V intersection shaders when modules with multiple entry points are used. . [ Andreas Beckmann ] * Update symbols files. * Ship the firmware blob on amd64. * Some power management features were not yet in Linux 2.6.32. * Update lintian overrides. * Upload to experimental. Checksums-Sha1: 66886031a8cb5f6041c9d4a50f3922be5062258a 6704 nvidia-graphics-drivers_465.24.02-1.dsc 46a45ffdaa7122d35abfb03dccc8413d2ea17684 235687543 nvidia-graphics-drivers_465.24.02.orig-amd64.tar.gz 55fee79cca9c708d49dc516270e317ead98e23d0 149651691 nvidia-graphics-drivers_465.24.02.orig-arm64.tar.gz 242842862a94fa56c80604fb5292f2cd085a5899 138 nvidia-graphics-drivers_465.24.02.orig.tar.gz 224a35b0e74a6228ce5f949a9d34493e771ba99b 200696 nvidia-graphics-drivers_465.24.02-1.debian.tar.xz 86fbc34caf66d7636aa770e482a055211d804c67 7870 nvidia-graphics-drivers_465.24.02-1_source.buildinfo Checksums-Sha256: 1683e7e72c76e1e628032af0b106a48a31e133a417cf8aa9603fe3fce0956b9e 6704 nvidia-graphics-drivers_465.24.02-1.dsc b465dc93a138b578bb79caeee7990131e5181336021c83809bd5adcb16c6b861 235687543 nvidia-graphics-drivers_465.24.02.orig-amd64.tar.gz 5f6f89c0e5b24b0062c59ffb9dd86f17a815c3929afcd381a962313b5a5aa809 149651691 nvidia-graphics-drivers_465.24.02.orig-arm64.tar.gz 01bc48047a4284afe7fabc64cf6b3301d9c4a9d15a26c3d51c4d21d3552a6030 138 nvidia-graphics-drivers_465.24.02.orig.tar.gz a367772fa569608bac69ef6df2f68c0f4475a86464718ac73af69050f8514d66 200696 nvidia-graphics-drivers_465.24.02-1.debian.tar.xz 22104d277f3647620e1438c9cc6a8e09bd40d76ccff356c538ee45ae6b3ff726 7870 nvidia-graphics-drivers_465.24.02-1_source.buildinfo Files: a864dc671ceb9d8d555054a6a019c936 6704 non-free/libs optional nvidia-graphics-drivers_465.24.02-1.dsc ce26669ad7cea2c8bf5289dbefa57118 235687543 non-free/libs optional nvidia-graphics-drivers_465.24.02.orig-amd64.tar.gz a0945d225535981c1ad28ca1f96a2005 149651691 non-free/libs optional nvidia-graphics-drivers_465.24.02.orig-arm64.tar.gz 56d72712d0c66e6062e0fdfcc929948e 138 non-free/libs optional nvidia-graphics-drivers_465.24.02.orig.tar.gz cc6372828981085f6924ef3a2f7ad4c7 200696 non-free/libs optional nvidia-graphics-drivers_465.24.02-1.debian.tar.xz 107713dee5c1f3763df1be73d7b7dfb8 7870 non-free/libs optional nvidia-graphics-drivers_465.24.02-1_source.buildinfo -----BEGIN PGP SIGNATURE----- iQJEBAEBCAAuFiEE6/MKMKjZxjvaRMaUX7M/k1np7QgFAmCIQP4QHGFuYmVAZGVi aWFuLm9yZwAKCRBfsz+TWentCLBsD/0c4uHCSmjElqjEwCxRY6CwwCQ8DmXLWThe 4V4R/iB2Z1IK04X8YgBjDsFTA/mT0rceLB4tOeaiS15PPsL/Am57RXp7mJJXV0C8 c0zwIK+jOGYevLKQ80VkzZa4TcLYSkm7hrOnTGe2MMRuE1smz+UQ4AqtXEbi7F4k kcDZ1gmfSQPZfzqMJkOCtkG657+q5qdBU6uFLYZobBFg7WSJEv7A8h0mYcWeF0VY xOzTWssmkr0v6i6BWIENdpajKoB4wXWkHTFmN45nevX4K7HZZdSp6IN8Uo0z6ATn 6Y1biNQYGJZl9aKSEByJdXF/Z4YktOm1PqboX5hAVgEPzPKPcZjAYHs8/2wLbh/q aOn+G8ED1P7uxK6osn9EFHJ7RejOg+8iwzDGVUNGXB/FNzmE/ecUKZOxC03Hez38 IyKsJkI++vVCOmEo+z7Wk7nR12X5boF/z3BYyFf9Oo8qD5kwOay87AJriTHzJfIJ r0T8gPInozn32uD/pcC2RlTEr2MDMWF02UYkGP1qtlh5+5KyhOK1xmD1eITrVw8C 1VBHwNS9XoJwPnLe1CgZq7xdqo2vxUlIeVtJvAnJAWvJ3pN5asr+Ii2sipIBhKa/ OGm8msXxW8VJEtt7hytLauHgspYsQt3qW7UB4rlZpLXq7Lh+adCTQm+BXc4SS/Hr S29cngcxGQ== =Pk0+ -----END PGP SIGNATURE-----
--- End Message ---
