Bug#1055144: marked as done (nvidia-open-gpu-kernel-modules: CVE-2023-31022)

Debian Bug Tracking System Tue, 21 Nov 2023 16:51:16 -0800

Your message dated Wed, 22 Nov 2023 00:49:20 +0000
with message-id <e1r5bqe-00gqg4...@fasolo.debian.org>
and subject line Bug#1055144: fixed in nvidia-open-gpu-kernel-modules 
525.147.05-1
has caused the Debian Bug report #1055144,
regarding nvidia-open-gpu-kernel-modules: CVE-2023-31022
to be marked as done.


This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)


-- 
1055144: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1055144
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems

--- Begin Message ---

Source: nvidia-graphics-drivers
Severity: normal
Tags: security
X-Debbugs-Cc: Debian Security Team <t...@security.debian.org>
Control: clone -1 -2 -3 -4 -5 -6 -7 -8 -9
Control: reassign -2 src:nvidia-graphics-drivers-legacy-340xx 340.76-6
Control: retitle -2 nvidia-graphics-drivers-legacy-340xx: CVE-2023-31022
Control: tag -2 + wontfix
Control: reassign -3 src:nvidia-graphics-drivers-legacy-390xx 390.48-4
Control: retitle -3 nvidia-graphics-drivers-legacy-390xx: CVE-2023-31022
Control: tag -3 + wontfix
Control: reassign -4 src:nvidia-graphics-drivers-tesla-418 418.87.01-1
Control: retitle -4 nvidia-graphics-drivers-tesla-418: CVE-2023-31022
Control: tag -4 + wontfix
Control: reassign -5 src:nvidia-graphics-drivers-tesla-450 450.51.05-1
Control: retitle -5 nvidia-graphics-drivers-tesla-450: CVE-2023-31022
Control: tag -5 + wontfix
Control: reassign -6 src:nvidia-graphics-drivers-tesla-460 460.32.03-1
Control: retitle -6 nvidia-graphics-drivers-tesla-460: CVE-2023-31022
Control: tag -6 + wontfix
Control: close -6 460.106.00-3
Control: reassign -7 src:nvidia-graphics-drivers-tesla-470 470.57.02-1
Control: retitle -7 nvidia-graphics-drivers-tesla-470: CVE-2023-31022
Control: reassign -8 src:nvidia-graphics-drivers-tesla 510.85.02-1
Control: retitle -8 nvidia-graphics-drivers-tesla: CVE-2023-31022
Control: found -8 515.48.07-1
Control: found -8 525.60.13-1
Control: found -8 535.54.03-1
Control: reassign -9 src:nvidia-open-gpu-kernel-modules 515.43.04-1
Control: retitle -9 nvidia-open-gpu-kernel-modules: CVE-2023-31022
Control: found -9 520.56.06-1
Control: found -9 525.85.12-1
Control: found -9 530.30.02-1
Control: found -9 535.43.02-1
Control: found -9 545.23.06-1
Control: found -1 340.24-1
Control: found -1 343.22-1
Control: found -1 396.18-1
Control: found -1 430.14-1
Control: found -1 455.23.04-1
Control: found -1 465.24.02-1
Control: found -1 495.44-1
Control: found -1 515.48.07-1
Control: found -1 520.56.06-1
Control: found -1 525.53-1
Control: found -1 530.30.02-1
Control: found -1 535.43.02-1
Control: found -1 545.23.06-1

https://nvidia.custhelp.com/app/answers/detail/a_id/5491

CVE-2023-31022  NVIDIA GPU Display Driver for Windows and Linux contains
a vulnerability in the kernel mode layer, where a NULL-pointer
dereference may lead to denial of service.

Linux Driver Branch     CVE IDs Addressed
R545, R535, R525, R470  CVE-2023-31022

Driver Branch   Affected Driver Versions                        Updated Driver 
Version
R545            All driver versions prior to 545.29.02          545.29.02
R535            All driver versions prior to 535.129.03         535.129.03
R525            All driver versions prior to 525.147.05         525.147.05
R470            All driver versions prior to 470.223.02         470.223.02


Andreas

--- End Message ---

--- Begin Message ---

Source: nvidia-open-gpu-kernel-modules
Source-Version: 525.147.05-1
Done: Andreas Beckmann <a...@debian.org>

We believe that the bug you reported is fixed in the latest version of
nvidia-open-gpu-kernel-modules, which is due to be installed in the Debian FTP 
archive.

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to 1055...@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Andreas Beckmann <a...@debian.org> (supplier of updated 
nvidia-open-gpu-kernel-modules package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmas...@ftp-master.debian.org)


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Wed, 22 Nov 2023 01:17:56 +0100
Source: nvidia-open-gpu-kernel-modules
Architecture: source
Version: 525.147.05-1
Distribution: unstable
Urgency: medium
Maintainer: Debian NVIDIA Maintainers <pkg-nvidia-de...@lists.alioth.debian.org>
Changed-By: Andreas Beckmann <a...@debian.org>
Closes: 1055144
Changes:
 nvidia-open-gpu-kernel-modules (525.147.05-1) unstable; urgency=medium
 .
   * New upstream production branch release 525.147.05 (2023-10-31).
     * Fixed CVE-2023-31022.  (Closes: #1055144)
       https://nvidia.custhelp.com/app/answers/detail/a_id/5491
   * Refresh patches.
   * Fix FTBFS with quilt 0.67.
Checksums-Sha1:
 64dd7c2624e6a23044ef1550c53cc9b6ab701115 2729 
nvidia-open-gpu-kernel-modules_525.147.05-1.dsc
 6dc90698c8bca76c4f1dae223d17ad2847005f4d 10140684 
nvidia-open-gpu-kernel-modules_525.147.05.orig.tar.xz
 4d7e31207655a3c1ee9b7f4c3595182f9d2dfc4b 19056 
nvidia-open-gpu-kernel-modules_525.147.05-1.debian.tar.xz
 5bdf2dc11d4cc41a22eb003998eceeb9385cd8c6 5659 
nvidia-open-gpu-kernel-modules_525.147.05-1_source.buildinfo
Checksums-Sha256:
 0755bfed75b13961b6752bb0b51b561484cc3dcd7b969dcc69a7030d36c9eb78 2729 
nvidia-open-gpu-kernel-modules_525.147.05-1.dsc
 44ef54a22bfd4feb50837d1679e997b654b280cf774ff7a5fa709ef5f86b895d 10140684 
nvidia-open-gpu-kernel-modules_525.147.05.orig.tar.xz
 c1fa8d5858888ae055d9292b93b9993a1cae2bafa1d947e9f25c7dfb5526f726 19056 
nvidia-open-gpu-kernel-modules_525.147.05-1.debian.tar.xz
 50d64a7fbdaa5046e21e5bccd26017135726bbd88f447f3c2d97ea7f10f28d94 5659 
nvidia-open-gpu-kernel-modules_525.147.05-1_source.buildinfo
Files:
 804b2d26187dc8598b105d0ccf9b46f8 2729 contrib/kernel optional 
nvidia-open-gpu-kernel-modules_525.147.05-1.dsc
 88ba1adbf97aedbb8015b9d05d355082 10140684 contrib/kernel optional 
nvidia-open-gpu-kernel-modules_525.147.05.orig.tar.xz
 892b0ad2751244ffb88ea20b553641d2 19056 contrib/kernel optional 
nvidia-open-gpu-kernel-modules_525.147.05-1.debian.tar.xz
 3013ba9970f0575c9fdc155fa2e0fb66 5659 contrib/kernel optional 
nvidia-open-gpu-kernel-modules_525.147.05-1_source.buildinfo

-----BEGIN PGP SIGNATURE-----
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=GHFb
-----END PGP SIGNATURE-----

--- End Message ---

Bug#1055144: marked as done (nvidia-open-gpu-kernel-modules: CVE-2023-31022)

Reply via email to