NVIDIA (GPU Display Driver) Products February 2024 Security Update Advisory

Feb 29 2024

Overview

NVIDIA(https://www.nvidia.com) has released a security update that fixes vulnerabilities in products . Users of affected products are advised to update to the latest version.

Affected Products

GPU Display Driver (Security Updates for NVIDIA GPU Linux Display Driver) prior to 470.239.06

GPU Display Driver (Security Updates for NVIDIA GPU Linux Display Driver) prior to 535.161.07

GPU Display Driver (Security Updates for NVIDIA GPU Linux Display Driver) prior to 550.54.14

GPU Display Driver (Security Updates for NVIDIA GPU Windows Display Driver) prior to 474.82

GPU Display Driver (Security Updates for NVIDIA GPU Windows Display Driver) prior to 474.89

GPU Display Driver (Security Updates for NVIDIA GPU Windows Display Driver) prior to 538.33

GPU Display Driver (Security Updates for NVIDIA GPU Windows Display Driver) prior to 551.61

Resolved Vulnerabilities

Data manipulation vulnerability due to insufficient validation of out-of-memory writes in NVIDIA GPU Display Driver for Windows (CVE-2024-0071, CVSS 7.8) [1]

Kernel-mode layer vulnerability in NVIDIA GPU Display Driver for Windows when the driver performs an operation at a privilege level higher than the minimum required (CVE-2024-0073, CVSS 7.8) [1]

Vulnerability in NVIDIA GPU Display Driver for Linux that could allow an attacker to access a memory location after buffer exit (CVE-2024-0074, CVSS 7.1) [1]

Denial of Service Vulnerability in NVIDIA GPU Display Driver for Windows and Linux due to lack of null-pointer dereference validation (CVE-2024-0078, CVSS 6.5) [1]

Denial of Service Vulnerability in NVIDIA GPU Display Driver for Windows and Linux due to lack of null-pointer dereference validation (CVE-2024-0075, CVSS 6.1) [1]

Data manipulation vulnerability due to lack of integer overflow validation in the NVIDIA GPU Display Driver for Windows and Linux (CVE-2022-42265, CVSS 5.3) [1]

Vulnerability Patches

The following product-specific vulnerability patches were made available in the 02/28/2024 Update. For more information on vulnerability patches, please refer to the “Security Updates” section of the product-specific reference site documentation.

GPU Display Driver (Security Updates for NVIDIA GPU Windows Display Driver) version 474.82

GPU Display Driver (Security Updates for NVIDIA GPU Windows Display Driver) version 474.89

GPU Display Driver (Security Updates for NVIDIA GPU Windows Display Driver) 538.33 version

GPU Display Driver (Security Updates for NVIDIA GPU Windows Display Driver) 551.61 version

GPU Display Driver (Security Updates for NVIDIA GPU Linux Display Driver) 470.239.06 version

GPU Display Driver (Security Updates for NVIDIA GPU Linux Display Driver) 535.161.07 version

GPU Display Driver (Security Updates for NVIDIA GPU Linux Display Driver) 550.54.14 version

Referenced Sites

[1] NVIDIA GPU Display Driver – February 2024

Https://nvidia.custhelp.com/app/answers/detail/a_id/5520

NVIDIA (GPU Display Driver) Products February 2024 Security Update Advisory

Overview

Affected Products

Resolved Vulnerabilities

Vulnerability Patches

Referenced Sites

Spring Framework Security Update Advisory (CVE-2024-22243)

Apache Solr Product Security Update Advisory (CVE-2023-50386)

Overview

Affected Products

Resolved Vulnerabilities

Vulnerability Patches

Referenced Sites

Tags:

Spring Framework Security Update Advisory (CVE-2024-22243)

Apache Solr Product Security Update Advisory (CVE-2023-50386)