Fabre

#1106734 nvidia-cuda-toolkit: CVE-2025-23247 #1106734

Package:: src:nvidia-cuda-toolkit

Source:: src:nvidia-cuda-toolkit

Submitter:: Moritz Mühlenhoff

Date:: 2025-06-10 13:07:04 UTC

Severity:: normal

Tags:

#1106734#5

Date:: 2025-05-28 18:33:16 UTC

From:

To:

Hi,

The following vulnerability was published for nvidia-cuda-toolkit.

CVE-2025-23247[0]:
| NVIDIA CUDA Toolkit for all platforms contains a vulnerability in
| the cuobjdump binary, where a failure to check the length of a
| buffer could allow a user to cause the tool to crash or execute
| arbitrary code by passing in a malformed ELF file. A successful
| exploit of this vulnerability might lead to arbitrary code
| execution.

https://nvidia.custhelp.com/app/answers/detail/a_id/5643


If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.

For further information see:

[0] https://security-tracker.debian.org/tracker/CVE-2025-23247
https://www.cve.org/CVERecord?id=CVE-2025-23247

Please adjust the affected versions in the BTS as needed.

#1106734 nvidia-cuda-toolkit: CVE-2025-23247 #1106734

Just Reply to ...

Reply to submitter ...

Send control command (Silently)

Set Architecture Tags (Silently)