Public bug reported: NVIDIA received notification of a security exploit that uses NVIDIA UNIX device files to map and program registers to redirect the VGA window. Through the VGA window, the exploit can access any region of physical system memory. This arbitrary memory access can be further exploited, for example, to escalate user privileges.
Here is the email by Dave Airlie on the issue: http://permalink.gmane.org/gmane.comp.security.full-disclosure/86747 Nvidia's announcement: http://nvidia.custhelp.com/app/answers/detail/a_id/3140 ** Affects: nvidia-graphics-drivers (Ubuntu) Importance: Critical Assignee: Alberto Milone (albertomilone) Status: In Progress ** Affects: nvidia-graphics-drivers-updates (Ubuntu) Importance: Critical Assignee: Alberto Milone (albertomilone) Status: In Progress ** Affects: nvidia-graphics-drivers (Ubuntu Precise) Importance: Critical Assignee: Alberto Milone (albertomilone) Status: In Progress ** Affects: nvidia-graphics-drivers-updates (Ubuntu Precise) Importance: Critical Assignee: Alberto Milone (albertomilone) Status: In Progress ** Also affects: nvidia-graphics-drivers-updates (Ubuntu) Importance: Undecided Status: New ** Also affects: nvidia-graphics-drivers (Ubuntu Precise) Importance: Undecided Status: New ** Also affects: nvidia-graphics-drivers-updates (Ubuntu Precise) Importance: Undecided Status: New ** Changed in: nvidia-graphics-drivers (Ubuntu Precise) Status: New => In Progress ** Changed in: nvidia-graphics-drivers-updates (Ubuntu) Status: New => In Progress ** Changed in: nvidia-graphics-drivers-updates (Ubuntu Precise) Status: New => In Progress ** Changed in: nvidia-graphics-drivers (Ubuntu Precise) Importance: Undecided => Critical ** Changed in: nvidia-graphics-drivers-updates (Ubuntu) Importance: Undecided => Critical ** Changed in: nvidia-graphics-drivers-updates (Ubuntu Precise) Importance: Undecided => Critical ** Changed in: nvidia-graphics-drivers (Ubuntu Precise) Assignee: (unassigned) => Alberto Milone (albertomilone) ** Changed in: nvidia-graphics-drivers-updates (Ubuntu) Assignee: (unassigned) => Alberto Milone (albertomilone) ** Changed in: nvidia-graphics-drivers-updates (Ubuntu Precise) Assignee: (unassigned) => Alberto Milone (albertomilone) -- You received this bug notification because you are a member of Ubuntu-X, which is subscribed to nvidia-graphics-drivers in Ubuntu. https://bugs.launchpad.net/bugs/1033452 Title: Security issue in NVIDIA UNIX device files to map and program registers to redirect the VGA window To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/nvidia-graphics-drivers/+bug/1033452/+subscriptions _______________________________________________ Mailing list: https://launchpad.net/~ubuntu-x-swat Post to : ubuntu-x-swat@lists.launchpad.net Unsubscribe : https://launchpad.net/~ubuntu-x-swat More help : https://help.launchpad.net/ListHelp
