- Package:
- src:nvidia-graphics-drivers
- Source:
- src:nvidia-graphics-drivers
- Submitter:
- Andreas Beckmann
- Date:
- 2025-12-26 15:19:02 UTC
- Severity:
- normal
- Tags:
Source: nvidia-graphics-drivers Severity: serious Tags: security upstream X-Debbugs-Cc: Debian Security Team <team@security.debian.org> Control: clone -1 -2 -3 -4 -5 -6 -7 -8 -9 -10 -11 Control: reassign -2 src:nvidia-graphics-drivers-legacy-340xx 340.76-6 Control: retitle -2 nvidia-graphics-drivers-legacy-340xx: CVE-2025-23279, CVE-2025-23286 Control: tag -2 + wontfix Control: reassign -3 src:nvidia-graphics-drivers-legacy-390xx 390.48-4 Control: retitle -3 nvidia-graphics-drivers-legacy-390xx: CVE-2025-23279, CVE-2025-23286 Control: tag -3 + wontfix Control: reassign -4 src:nvidia-graphics-drivers-tesla-418 418.87.01-1 Control: retitle -4 nvidia-graphics-drivers-tesla-418: CVE-2025-23279, CVE-2025-23286 Control: tag -4 + wontfix Control: reassign -5 src:nvidia-graphics-drivers-tesla-450 450.51.05-1 Control: retitle -5 nvidia-graphics-drivers-tesla-450: CVE-2025-23279, CVE-2025-23286 Control: tag -5 + wontfix Control: close -5 450.248.02-4 Control: reassign -6 src:nvidia-graphics-drivers-tesla-460 460.32.03-1 Control: retitle -6 nvidia-graphics-drivers-tesla-460: CVE-2025-23279, CVE-2025-23286 Control: tag -6 + wontfix Control: close -6 460.106.00-3 Control: reassign -7 src:nvidia-graphics-drivers-tesla-470 470.57.02-1 Control: retitle -7 nvidia-graphics-drivers-tesla-470: CVE-2025-23279, CVE-2025-23286 Control: tag -7 + wontfix Control: reassign -8 src:nvidia-graphics-drivers-tesla 510.85.02-1 Control: retitle -8 nvidia-graphics-drivers-tesla: CVE-2025-23279, CVE-2025-23286 Control: found -8 515.48.07-1 Control: found -8 525.60.13-1 Control: tag -8 + wontfix Control: close -8 525.147.05-6 Control: reassign -9 src:nvidia-open-gpu-kernel-modules 515.43.04-1 Control: retitle -9 nvidia-open-gpu-kernel-modules: CVE-2025-23279, CVE-2025-23286 Control: found -9 520.56.06-1 Control: found -9 525.85.12-1 Control: found -9 530.30.02-1 Control: found -9 535.43.02-1 Control: found -9 545.23.06-1 Control: found -9 550.40.07-1 Control: found -9 555.42.02-1 Control: found -9 560.28.03-1 Control: found -9 565.57.01-1 Control: found -9 570.86.16-1 Control: found -9 575.51.02-1 Control: reassign -10 src:nvidia-graphics-drivers-tesla-535 535.216.01-1 Control: retitle -10 nvidia-graphics-drivers-tesla-535: CVE-2025-23279, CVE-2025-23286 Control: reassign -11 src:nvidia-graphics-drivers-tesla-550 550.54.15-1 Control: retitle -11 nvidia-graphics-drivers-tesla-550: CVE-2025-23279, CVE-2025-23286 Control: tag -11 + wontfix Control: found -1 340.24-1 Control: found -1 343.22-1 Control: found -1 396.18-1 Control: found -1 430.14-1 Control: found -1 455.23.04-1 Control: found -1 465.24.02-1 Control: found -1 495.44-1 Control: found -1 515.48.07-1 Control: found -1 520.56.06-1 Control: found -1 525.53-1 Control: found -1 530.30.02-1 Control: found -1 535.43.02-1 Control: found -1 545.23.06-1 Control: found -1 550.40.07-1 Control: found -1 555.42.02-1 Control: found -1 560.28.03-1 Control: found -1 565.57.01-1 Control: found -1 570.86.16-1 Control: found -1 575.51.02-1 https://nvidia.custhelp.com/app/answers/detail/a_id/5670 CVE‑2025‑23279 NVIDIA .run Installer for Linux and Solaris contains a vulnerability where an attacker could use a race condition to escalate privileges. A successful exploit of this vulnerability might lead to coqe execution, escalation of privileges, information disclosure, denial of service, or data tampering. CVE‑2025‑23286 NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability where an attacker could read invalid memory. A successful exploit of this vulnerability might lead to information disclosure. Linux Driver Branch CVEs Addressed R570 CVE-2025-23279 R535 CVE-2025-23279, CVE-2025-23286 Driver Branch Affected Driver Versions Updated Driver Version R575 All driver version prior to 575.64.05 575.64.05 R570 All driver version prior to 570.172.08 570.172.08 R535 All driver versions prior to 535.261.03 535.261.03 Andreas
We believe that the bug you reported is fixed in the latest version of
nvidia-graphics-drivers, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to 1109907@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Andreas Beckmann <anbe@debian.org> (supplier of updated nvidia-graphics-drivers package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster@ftp-master.debian.org)
Format: 1.8
Date: Sat, 20 Dec 2025 23:41:28 +0100
Source: nvidia-graphics-drivers
Architecture: source
Version: 535.261.03-1
Distribution: bookworm
Urgency: medium
Maintainer: Debian NVIDIA Maintainers <pkg-nvidia-devel@lists.alioth.debian.org>
Changed-By: Andreas Beckmann <anbe@debian.org>
Closes: 1109907
Changes:
nvidia-graphics-drivers (535.261.03-1) bookworm; urgency=medium
.
* New upstream LTS and Tesla branch release 535.261.03 (2025-07-17).
* Fixed CVE-2025-23279, CVE-2025-23286. (Closes: #1109907)
https://nvidia.custhelp.com/app/answers/detail/a_id/5670
- Fixed a bug that could cause 32-bit x86 applications running on
recent builds of glibc to crash on dlopen().
- Fixed an issue that could cause render-offloaded applications using
KDE Frameworks 6 to crash.
* Improved compatibility with recent Linux kernels.
.
[ Andreas Beckmann ]
* Refresh patches.
.
nvidia-graphics-drivers (535.247.01-2) UNRELEASED; urgency=medium
.
[ Andreas Beckmann ]
* Backport drm_connector_helper_funcs_mode_valid_has_const_mode_arg changes
from 550.163.01 and ccflags-y, nv_timer_delete_sync, __iowrite64_lo_hi,
page_pgmap and make_device_exclusive changes from 570.153.02 and
nv_vma_start_write changes from 570.169 to fix kernel module build for
Linux 6.15.
.
[ Luca Boccassi ]
* Remove myself from Uploaders.
Checksums-Sha1:
66b42179074858262c53b270b2a43bbb581890e1 7207 nvidia-graphics-drivers_535.261.03-1.dsc
0c1663f1561c7bfccb127c3a1325458bce4ab9c6 340509410 nvidia-graphics-drivers_535.261.03.orig-amd64.tar.gz
8df13c69ea9efe22b61ed18549c70c5ceec95dc8 269488408 nvidia-graphics-drivers_535.261.03.orig-arm64.tar.gz
e3501a9a7a7c404e6f0bbfc755aa627e133e3cab 139 nvidia-graphics-drivers_535.261.03.orig.tar.gz
96b2777c8b8861bb71c5fde71052a9d01643104d 235936 nvidia-graphics-drivers_535.261.03-1.debian.tar.xz
b2630ff44411740f3423edf443fdbc4a3278a8e9 5993 nvidia-graphics-drivers_535.261.03-1_source.buildinfo
Checksums-Sha256:
763ea61da2722eae5e564c7046bac5b953c142152be754b2e2bb137e1b997769 7207 nvidia-graphics-drivers_535.261.03-1.dsc
2dc4d0dc5495cb898b48f0d774a2620452e9f0e486eb5ddac3e0dfa3efbf3b82 340509410 nvidia-graphics-drivers_535.261.03.orig-amd64.tar.gz
db51637fde3860307911fc7533233a4130b57fa0acbfd309cd7bf45576640325 269488408 nvidia-graphics-drivers_535.261.03.orig-arm64.tar.gz
01471136d9f8c44b98fb91228dca9d1c493fd552fba026228614ee9f1bc6ee8f 139 nvidia-graphics-drivers_535.261.03.orig.tar.gz
ddc9785291f8e6c05c72ac5d1790e7f177451c369af4562f760589d8f41a689c 235936 nvidia-graphics-drivers_535.261.03-1.debian.tar.xz
e9c439efda3e09563c713c96b684e603a4b54a163614d950d2e8a403800fd03e 5993 nvidia-graphics-drivers_535.261.03-1_source.buildinfo
Files:
41cdb9963e1e3c72e7b909b7ffb224d1 7207 non-free/libs optional nvidia-graphics-drivers_535.261.03-1.dsc
88870f7847fccc0df277a79207ab8754 340509410 non-free/libs optional nvidia-graphics-drivers_535.261.03.orig-amd64.tar.gz
bc6dfd099168a567277ab3e9452ee3da 269488408 non-free/libs optional nvidia-graphics-drivers_535.261.03.orig-arm64.tar.gz
9cc9045d02c1abfc8a088d9265405080 139 non-free/libs optional nvidia-graphics-drivers_535.261.03.orig.tar.gz
4a49b454a844901d51c13e0dce5ac924 235936 non-free/libs optional nvidia-graphics-drivers_535.261.03-1.debian.tar.xz
d3ecdd8af82a60e0c8a039a7da317445 5993 non-free/libs optional nvidia-graphics-drivers_535.261.03-1_source.buildinfo
-----BEGIN PGP SIGNATURE-----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=XWuv
-----END PGP SIGNATURE-----