CVE-2012-0952

CWE-119Buffer OverflowCWE-787Out-of-bounds Write5 documents5 sources
Severity
5.0MEDIUM
EPSS
0.1%
top 81.02%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Nvidia Graphics DriversNvidia Display Driver
Timeline
PublishedMay 8
Latest updateApr 23

Description

A heap buffer overflow was discovered in the device control ioctl in the Linux driver for Nvidia graphics cards, which may allow an attacker to overflow 49 bytes. This issue was fixed in version 295.53.

CVSS vector

CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:LExploitability: 0.8 | Impact: 3.7

Affected Packages3 packages

CVEListV5nvidia/graphics_driversunspecified295.53
Debiannvidia-graphics-drivers< 295.53-1+3
NVDnvidia/display_driver< 295.53

🔴Vulnerability Details

3
GHSA
GHSA-xg6p-7989-gjfr: A heap buffer overflow was discovered in the device control ioctl in the Linux driver for Nvidia graphics cards, which may allow an attacker to overfl2022-04-23
CVEList
Heap overflow in control device ioctl2020-05-08
OSV
CVE-2012-0952: A heap buffer overflow was discovered in the device control ioctl in the Linux driver for Nvidia graphics cards, which may allow an attacker to overfl2020-05-08

📋Vendor Advisories

1
Debian
CVE-2012-0952: nvidia-graphics-drivers - A heap buffer overflow was discovered in the device control ioctl in the Linux d...2012
CVE-2012-0952 (MEDIUM CVSS 5) | A heap buffer overflow was discover | cvebase.io