#1093916 nvidia-open-gpu-kernel-modules: CVE-2024-0131, CVE-2024-0147, CVE-2024-0149, CVE-2024-0150 #1093916
- Package:
- src:nvidia-open-gpu-kernel-modules
- Submitter:
- Andreas Beckmann
- Date:
- 2025-07-30 10:59:02 UTC
- Severity:
- normal
- Tags:
Source: nvidia-graphics-drivers Severity: serious Tags: security upstream X-Debbugs-Cc: Debian Security Team <team@security.debian.org> Control: clone -1 -2 -3 -4 -5 -6 -7 -8 -9 -10 Control: reassign -2 src:nvidia-graphics-drivers-legacy-340xx 340.76-6 Control: retitle -2 nvidia-graphics-drivers-legacy-340xx: CVE-2024-0131, CVE-2024-0147, CVE-2024-0149, CVE-2024-0150 Control: tag -2 + wontfix Control: reassign -3 src:nvidia-graphics-drivers-legacy-390xx 390.48-4 Control: retitle -3 nvidia-graphics-drivers-legacy-390xx: CVE-2024-0131, CVE-2024-0147, CVE-2024-0149, CVE-2024-0150 Control: tag -3 + wontfix Control: reassign -4 src:nvidia-graphics-drivers-tesla-418 418.87.01-1 Control: retitle -4 nvidia-graphics-drivers-tesla-418: CVE-2024-0131, CVE-2024-0147, CVE-2024-0149, CVE-2024-0150 Control: tag -4 + wontfix Control: reassign -5 src:nvidia-graphics-drivers-tesla-450 450.51.05-1 Control: retitle -5 nvidia-graphics-drivers-tesla-450: CVE-2024-0131, CVE-2024-0147, CVE-2024-0149, CVE-2024-0150 Control: tag -5 + wontfix Control: close -5 450.248.02-4 Control: reassign -6 src:nvidia-graphics-drivers-tesla-460 460.32.03-1 Control: retitle -6 nvidia-graphics-drivers-tesla-460: CVE-2024-0131, CVE-2024-0147, CVE-2024-0149, CVE-2024-0150 Control: tag -6 + wontfix Control: close -6 460.106.00-3 Control: reassign -7 src:nvidia-graphics-drivers-tesla-470 470.57.02-1 Control: retitle -7 nvidia-graphics-drivers-tesla-470: CVE-2024-0131, CVE-2024-0147, CVE-2024-0149, CVE-2024-0150 Control: tag -7 + wontfix Control: severity -7 important Control: reassign -8 src:nvidia-graphics-drivers-tesla 510.85.02-1 Control: retitle -8 nvidia-graphics-drivers-tesla: CVE-2024-0131, CVE-2024-0147, CVE-2024-0149, CVE-2024-0150 Control: found -8 515.48.07-1 Control: found -8 525.60.13-1 Control: tag -8 + wontfix Control: close -8 525.147.05-6 Control: reassign -9 src:nvidia-open-gpu-kernel-modules 515.43.04-1 Control: retitle -9 nvidia-open-gpu-kernel-modules: CVE-2024-0131, CVE-2024-0147, CVE-2024-0149, CVE-2024-0150 Control: found -9 520.56.06-1 Control: found -9 525.85.12-1 Control: found -9 530.30.02-1 Control: found -9 535.43.02-1 Control: found -9 545.23.06-1 Control: found -9 550.40.07-1 Control: found -9 555.42.02-1 Control: found -9 560.28.03-1 Control: found -9 565.57.01-1 Control: reassign -10 src:nvidia-graphics-drivers-tesla-535 535.216.01-1 Control: retitle -10 nvidia-graphics-drivers-tesla-535: CVE-2024-0131, CVE-2024-0147, CVE-2024-0149, CVE-2024-0150 Control: found -1 340.24-1 Control: found -1 343.22-1 Control: found -1 396.18-1 Control: found -1 430.14-1 Control: found -1 455.23.04-1 Control: found -1 465.24.02-1 Control: found -1 495.44-1 Control: found -1 515.48.07-1 Control: found -1 520.56.06-1 Control: found -1 525.53-1 Control: found -1 530.30.02-1 Control: found -1 535.43.02-1 Control: found -1 545.23.06-1 Control: found -1 550.40.07-1 Control: found -1 555.42.02-1 Control: found -1 560.28.03-1 Control: found -1 565.57.01-1 https://nvidia.custhelp.com/app/answers/detail/a_id/5614 CVE-2024-0150 NVIDIA GPU display driver for Windows and Linux contains a vulnerability where data is written past the end or before the beginning of a buffer. A successful exploit of this vulnerability might lead to information disclosure, denial of service, or data tampering. CVE-2024-0147 NVIDIA GPU display driver for Windows and Linux contains a vulnerability where referencing memory after it has been freed can lead to denial of service or data tampering. CVE-2024-53869 NVIDIA Unified Memory driver for Linux contains a vulnerability where an attacker could leak uninitialized memory. A successful exploit of this vulnerability might lead to information disclosure. CVE-2024-0131 NVIDIA GPU kernel driver for Windows and Linux contains a vulnerability where a potential user-mode attacker could read a buffer with an incorrect length. A successful exploit of this vulnerability might lead to denial of service. CVE-2024-0149 NVIDIA GPU Display Driver for Linux contains a vulnerability which could allow an attacker unauthorized access to files. A successful exploit of this vulnerability might lead to limited information disclosure. Linux Driver Branch CVEs Addressed R550 CVE-2024-0131, CVE-2024-0147, CVE-2024-0149, CVE-2024-0150, CVE-2024-53869 R535 CVE-2024-0131, CVE-2024-0147, CVE-2024-0149, CVE-2024-0150 Driver Branch Affected Driver Versions Updated Driver Version R550 All driver versions prior to 550.144.03 550.144.03 R535 All driver versions prior to 535.230.02 535.230.02 Andreas
downgrading the severity temporarily as the 535.230.02 upstream release misses the .run file for ppc64el Andreas
We believe that the bug you reported is fixed in the latest version of
nvidia-open-gpu-kernel-modules, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to 1093916@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Andreas Beckmann <anbe@debian.org> (supplier of updated nvidia-open-gpu-kernel-modules package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster@ftp-master.debian.org)
Format: 1.8
Date: Sat, 03 May 2025 20:16:34 +0200
Source: nvidia-open-gpu-kernel-modules
Architecture: source
Version: 535.230.02-1
Distribution: unstable
Urgency: medium
Maintainer: Debian NVIDIA Maintainers <pkg-nvidia-devel@lists.alioth.debian.org>
Changed-By: Andreas Beckmann <anbe@debian.org>
Closes: 1093916
Changes:
nvidia-open-gpu-kernel-modules (535.230.02-1) unstable; urgency=medium
.
* New upstream LTS and Tesla branch release 535.230.02 (2025-01-16).
* Fixed CVE-2024-0150, CVE-2024-0147, CVE-2024-53869, CVE-2024-0131,
CVE-2024-0149. (Closes: #1093916)
https://nvidia.custhelp.com/app/answers/detail/a_id/5614
* Sync with src:nvidia-graphics-drivers.
* Refresh patches.
Checksums-Sha1:
100fd8043ab517b8daa9f31a62ea5bab0b4839d2 2681 nvidia-open-gpu-kernel-modules_535.230.02-1.dsc
8b5d415c17b928c5ee94b2fe71fccd61334cfdd1 12527212 nvidia-open-gpu-kernel-modules_535.230.02.orig.tar.xz
c4d1b4182065ba49b0bec1c895d1b1147005cadf 34048 nvidia-open-gpu-kernel-modules_535.230.02-1.debian.tar.xz
8f88b31599d0bf7c94f080903a1ea2e5745589b4 5537 nvidia-open-gpu-kernel-modules_535.230.02-1_source.buildinfo
Checksums-Sha256:
01d5e571f1b6f19925e69e2b33b06a4f76334bfba01f59e495cab5c66ba62a0e 2681 nvidia-open-gpu-kernel-modules_535.230.02-1.dsc
3b09709698baf902254e6a8c13e43ec7c04a627d6536799c3e50afc4b685eff8 12527212 nvidia-open-gpu-kernel-modules_535.230.02.orig.tar.xz
e9ca58ea6a63b8b2a3dd077411c309f8110ffaf5cc3c38103029b5805b4ff69b 34048 nvidia-open-gpu-kernel-modules_535.230.02-1.debian.tar.xz
0f891c610874ece108e6d99d24fb1791a307fbb8c3b37a325801afebd7146096 5537 nvidia-open-gpu-kernel-modules_535.230.02-1_source.buildinfo
Files:
0f52877162c99fa2a201e0899a0031cc 2681 contrib/kernel optional nvidia-open-gpu-kernel-modules_535.230.02-1.dsc
e60d1c4a6b4305e68ced2572600c22b2 12527212 contrib/kernel optional nvidia-open-gpu-kernel-modules_535.230.02.orig.tar.xz
8547e500a5ac80fb878e5ea907f7b317 34048 contrib/kernel optional nvidia-open-gpu-kernel-modules_535.230.02-1.debian.tar.xz
1bf53c2125a202b75eace46dfb4931a4 5537 contrib/kernel optional nvidia-open-gpu-kernel-modules_535.230.02-1_source.buildinfo
-----BEGIN PGP SIGNATURE-----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=WOY3
-----END PGP SIGNATURE-----
We believe that the bug you reported is fixed in the latest version of
nvidia-open-gpu-kernel-modules, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to 1093916@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Andreas Beckmann <anbe@debian.org> (supplier of updated nvidia-open-gpu-kernel-modules package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster@ftp-master.debian.org)
Format: 1.8
Date: Thu, 08 May 2025 22:10:43 +0200
Source: nvidia-open-gpu-kernel-modules
Architecture: source
Version: 535.247.01-1~deb12u1
Distribution: bookworm
Urgency: medium
Maintainer: Debian NVIDIA Maintainers <pkg-nvidia-devel@lists.alioth.debian.org>
Changed-By: Andreas Beckmann <anbe@debian.org>
Closes: 1090361 1093916 1098812 1104076
Changes:
nvidia-open-gpu-kernel-modules (535.247.01-1~deb12u1) bookworm; urgency=medium
.
* Rebuild for bookworm.
.
nvidia-open-gpu-kernel-modules (535.247.01-1) unstable; urgency=medium
.
* New upstream LTS and Tesla branch release 535.247.01 (2025-04-17).
* Fixed CVE-2025-23244. (Closes: #1104076)
https://nvidia.custhelp.com/app/answers/detail/a_id/5630
* Sync with src:nvidia-graphics-drivers.
.
nvidia-open-gpu-kernel-modules (535.230.02-1) unstable; urgency=medium
.
* New upstream LTS and Tesla branch release 535.230.02 (2025-01-16).
* Fixed CVE-2024-0150, CVE-2024-0147, CVE-2024-53869, CVE-2024-0131,
CVE-2024-0149. (Closes: #1093916)
https://nvidia.custhelp.com/app/answers/detail/a_id/5614
* Sync with src:nvidia-graphics-drivers.
.
nvidia-open-gpu-kernel-modules (535.216.03-4) unstable; urgency=medium
.
* Do not add -mfunction-return=thunk-extern flag, breaks backwards
compatibility with kernels built without this flag.
* Apply both patch sets manually.
.
nvidia-open-gpu-kernel-modules (535.216.03-3) unstable; urgency=medium
.
* Backport NV_MODULE_IMPORT_NS_TAKES_STRING_LITERAL and
NV_CRYPTO_AKCIPHER_VERIFY_PRESENT changes from 550.144.03 and
NV_FOLIO_TEST_SWAPCACHE_PRESENT changes from 565.57.01 to fix open kernel
module build for Linux 6.13.
* Let pahole ignore language c++11 for BTF generation. (Closes: #1098812)
* Fix warnings during open module build.
* Build with more kernel hardening flags.
* Sync with src:nvidia-graphics-drivers.
* Bump Standards-Version to 4.7.2. No changes needed.
.
nvidia-open-gpu-kernel-modules (535.216.03-2) unstable; urgency=medium
.
* Sync with src:nvidia-graphics-drivers. (Closes: #1090361)
.
nvidia-open-gpu-kernel-modules (535.216.03-1) unstable; urgency=medium
.
* New upstream Tesla branch release 535.216.03 (2024-11-19).
Checksums-Sha1:
aaac06a19c621e626a2427c36315083b4d8569b9 2713 nvidia-open-gpu-kernel-modules_535.247.01-1~deb12u1.dsc
c79141972cedf1dc24cd6dcd717a83a17017284f 29828 nvidia-open-gpu-kernel-modules_535.247.01-1~deb12u1.debian.tar.xz
942757f7bc7687a1d6619c720219c0dd586ad8e7 5960 nvidia-open-gpu-kernel-modules_535.247.01-1~deb12u1_source.buildinfo
Checksums-Sha256:
c97c182c0efe4ff817040403982701ea547aea5a45727d6ef2bd9daaeb699b73 2713 nvidia-open-gpu-kernel-modules_535.247.01-1~deb12u1.dsc
815ea9177251e4b40991db7cb7cf6b1b061383a6563e945914574b139d04076a 29828 nvidia-open-gpu-kernel-modules_535.247.01-1~deb12u1.debian.tar.xz
2554fd406b92e3feb8a8824744f1c1c4e6a2b44844b7bf43ee7a2958585ed4c1 5960 nvidia-open-gpu-kernel-modules_535.247.01-1~deb12u1_source.buildinfo
Files:
e0285086944045a210c0f63db4fc3057 2713 contrib/kernel optional nvidia-open-gpu-kernel-modules_535.247.01-1~deb12u1.dsc
7181a7d2b791e63c234dd1d7beedb984 29828 contrib/kernel optional nvidia-open-gpu-kernel-modules_535.247.01-1~deb12u1.debian.tar.xz
49bf2dabdae023884250b2d2863f1a94 5960 contrib/kernel optional nvidia-open-gpu-kernel-modules_535.247.01-1~deb12u1_source.buildinfo
-----BEGIN PGP SIGNATURE-----
iQJEBAEBCAAuFiEE6/MKMKjZxjvaRMaUX7M/k1np7QgFAmgdEJMQHGFuYmVAZGVi
aWFuLm9yZwAKCRBfsz+TWentCIpDD/4hYOp3JxthvQTKkYlOa7Bbf15dEEh5yk7p
njUSuF12dFYXlQ5xkvW6Jb8+IREsm3MyMdWnlMnuTXvgTB7Jwxo0MmuuDMLn1gDp
+ejKxzJcHbp6SvQ4A2ngqzcs4hQ5A1/X0vQf9wJ0wUzjFtSGzWalRqgDGOVN7faN
6OA+Mf8mg+zXBzvwexFEgK+Ju+ZkIWLjFIWJoZbSF80FVZQU+BbdGnIUrp6dvccW
ycr41oP0YmkIzW9Uz1V8gOkEgmEHiKsnau+0/wOInz6Gs2GuKMos9DPQACPa6XmO
Ue38LifnBBjnevpdOr+Jak0kRgHYkZWg35Pnfelvch+qpjc5kru+zecjQvcUz+uw
AOsQ3MA6SuhoolajGp6EbpUARD9M5DoMmXOt7hnGQZomj6wuQt301nGwlOsR5C9i
E2t0S8kkLqS3gii/ll8R3qJuz/HZNw98h63MqEZ04k0/NsFEcMxuS+qwn5ztMi1R
2M0CQ4AbZYLrg3622067knpsbn/ZE0wTgmhG+Lo0Mu20NsJDtAo2DpIgVuPErDdr
Jise/c2yU95kYgjYGfC7l/FbrpCxsgjchkR2HG7bf4KT7sW2M8hs97VbVDF8yiJb
7qVikT/EKtMGc5LSoNcc3JBYGjO3MWyoXHT3rEqbYTfF+XKrJRi3uAGy1vUiO7LK
Xg12GaKv2Q==
=1MWm
-----END PGP SIGNATURE-----
We believe that the bug you reported is fixed in the latest version of
nvidia-open-gpu-kernel-modules, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to 1093916@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Andreas Beckmann <anbe@debian.org> (supplier of updated nvidia-open-gpu-kernel-modules package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster@ftp-master.debian.org)
Format: 1.8
Date: Thu, 22 May 2025 08:05:14 +0200
Source: nvidia-open-gpu-kernel-modules
Architecture: source
Version: 550.144.03-1
Distribution: unstable
Urgency: medium
Maintainer: Debian NVIDIA Maintainers <pkg-nvidia-devel@lists.alioth.debian.org>
Changed-By: Andreas Beckmann <anbe@debian.org>
Closes: 1093916
Changes:
nvidia-open-gpu-kernel-modules (550.144.03-1) unstable; urgency=medium
.
* New upstream production and Tesla branch release 550.144.03 (2025-01-16).
* Fixed CVE-2024-0150, CVE-2024-0147, CVE-2024-53869, CVE-2024-0131,
CVE-2024-0149. (Closes: #1093916)
https://nvidia.custhelp.com/app/answers/detail/a_id/5614
* New upstream production branch release 550.142 (2024-12-17).
* Sync with src:nvidia-graphics-drivers.
* Upload to unstable.
Checksums-Sha1:
75858901a39f77bd632afda3ac2d9cd49d5137a7 2681 nvidia-open-gpu-kernel-modules_550.144.03-1.dsc
b300d72c323a0fd419ceb2510e4f7021267deca5 13544304 nvidia-open-gpu-kernel-modules_550.144.03.orig.tar.xz
1573b17445e53e51982a43b14658dff2926a02dd 29576 nvidia-open-gpu-kernel-modules_550.144.03-1.debian.tar.xz
13eb0f60b9b44d8e9ce0d907a4e4bc26880bfa53 5538 nvidia-open-gpu-kernel-modules_550.144.03-1_source.buildinfo
Checksums-Sha256:
ca90773315508dcac479674a644923d7fce9d9c145148934761552eb42e92039 2681 nvidia-open-gpu-kernel-modules_550.144.03-1.dsc
33f5ef9723cfe0022b9537cd9bc8e88f926fe0751ee555e148b2c52688d49027 13544304 nvidia-open-gpu-kernel-modules_550.144.03.orig.tar.xz
7c9204e55843c5e9c0828df9396cba26144917f01f663f37cbf4ba8872a1c961 29576 nvidia-open-gpu-kernel-modules_550.144.03-1.debian.tar.xz
ce37d4a59aacc150001fafbe1a045eb8ae65e5cb07e65588924ab5abc3e3c2a5 5538 nvidia-open-gpu-kernel-modules_550.144.03-1_source.buildinfo
Files:
b654645c62b9a9ead0dd89141c26e3cc 2681 contrib/kernel optional nvidia-open-gpu-kernel-modules_550.144.03-1.dsc
50ad19e43061d4760f12684a1ba11576 13544304 contrib/kernel optional nvidia-open-gpu-kernel-modules_550.144.03.orig.tar.xz
730ab8d26abf35e0581239e971e9b9db 29576 contrib/kernel optional nvidia-open-gpu-kernel-modules_550.144.03-1.debian.tar.xz
8d20549f4c549b386c3cbd63727fd52f 5538 contrib/kernel optional nvidia-open-gpu-kernel-modules_550.144.03-1_source.buildinfo
-----BEGIN PGP SIGNATURE-----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=jzTO
-----END PGP SIGNATURE-----