Fabre

#1104137 nvidia-cuda-toolkit: CVE-2024-53870 CVE-2024-53871 CVE-2024-53872 CVE-2024-53874 CVE-2024-53875 CVE-2024-53876 CVE-2024-53877 CVE-2024-53878 CVE-2024-53879 #1104137

Package:: src:nvidia-cuda-toolkit

Source:: src:nvidia-cuda-toolkit

Submitter:: Andreas Beckmann

Date:: 2025-04-25 21:24:02 UTC

Severity:: normal

Tags:

#1104137#5

Date:: 2025-04-25 21:20:30 UTC

From:

To:

https://nvidia.custhelp.com/app/answers/detail/a_id/5594

CVE-2024-53870 NVIDIA CUDA toolkit for all platforms contains a
vulnerability in the cuobjdump binary, where a user could cause an
out-of-bounds read by passing a malformed ELF file to cuobjdump. A
successful exploit of this vulnerability might lead to a partial denial
of service.

CVE-2024-53871 NVIDIA CUDA toolkit for all platforms contains a
vulnerability in the nvdisasm binary, where a user could cause an
out-of-bounds read by passing a malformed ELF file to nvdisasm. A
successful exploit of this vulnerability might lead to a partial denial
of service.

CVE-2024-53872 NVIDIA CUDA toolkit for all platforms contains a
vulnerability in the cuobjdump binary, where a user could cause an
out-of-bounds read by passing a malformed ELF file to cuobjdump. A
successful exploit of this vulnerability might lead to a partial denial
of service.

CVE-2024-53874 NVIDIA CUDA toolkit for all platforms contains a
vulnerability in the cuobjdump binary, where a user could cause an
out-of-bounds read by passing a malformed ELF file to cuobjdump. A
successful exploit of this vulnerability might lead to a partial denial
of service.

CVE-2024-53875 NVIDIA CUDA toolkit for all platforms contains a
vulnerability in the cuobjdump binary, where a user could cause an
out-of-bounds read by passing a malformed ELF file to cuobjdump. A
successful exploit of this vulnerability might lead to a partial denial
of service.

CVE-2024-53876 NVIDIA CUDA toolkit for all platforms contains a
vulnerability in the nvdisasm binary, where a user could cause an
out-of-bounds read by passing a malformed ELF file to nvdisasm. A
successful exploit of this vulnerability might lead to a partial denial
of service.

CVE-2024-53877 NVIDIA CUDA toolkit for all platforms contains a
vulnerability in the nvdisasm binary, where a user could cause a NULL
pointer exception by passing a malformed ELF file to nvdisasm. A
successful exploit of this vulnerability might lead to a partial denial
of service.

CVE-2024-53878 NVIDIA CUDA toolkit for Linux and Windows contains a
vulnerability in the cuobjdump binary, where a user could cause a crash
by passing a malformed ELF file to cuobjdump. A successful exploit of
this vulnerability might lead to a partial denial of service.

CVE-2024-53879 NVIDIA CUDA toolkit for Linux and Windows contains a
vulnerability in the cuobjdump binary, where a user could cause a crash
by passing a malformed ELF file to cuobjdump. A successful exploit of
this vulnerability might lead to a partial denial of service.

CVE IDs Addressed Affected Products Platform or OS Affected Versions Updated Version
CVE-2024-53870 NVIDIA CUDA Toolkit Windows, Linux All versions up to CUDA Toolkit 12.8 CUDA Toolkit 12.8
CVE-2024-53871
CVE-2024-53872
CVE-2024-53873
CVE-2024-53874
CVE-2024-53875
CVE-2024-53876
CVE-2024-53877
CVE-2024-53878
CVE-2024-53879

Andreas

#1104137 nvidia-cuda-toolkit: CVE-2024-53870 CVE-2024-53871 CVE-2024-53872 CVE-2024-53874 CVE-2024-53875 CVE-2024-53876 CVE-2024-53877 CVE-2024-53878 CVE-2024-53879 #1104137

Just Reply to ...

Reply to submitter ...

Send control command (Silently)

Set Architecture Tags (Silently)