CVE-2012-0953

CWE-362 — Race Condition5 documents5 sources

Severity

5.0MEDIUM

EPSS

0.0%

top 86.41%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Nvidia Graphics Drivers Nvidia Display Driver

Timeline

PublishedMay 8

Latest updateApr 23

Description

A race condition was discovered in the Linux drivers for Nvidia graphics which allowed an attacker to exfiltrate kernel memory to userspace. This issue was fixed in version 295.53.

CVSS vector

CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:LExploitability: 0.8 | Impact: 3.7

Affected Packages3 packages

▶CVEListV5nvidia/graphics_driversunspecified — 295.53

▶Debiannvidia-graphics-drivers< 295.53-1+3

▶NVDnvidia/display_driver< 295.53

🔴Vulnerability Details

GHSA

GHSA-hrhp-pg6r-2xqh: A race condition was discovered in the Linux drivers for Nvidia graphics which allowed an attacker to exfiltrate kernel memory to userspace↗2022-04-23

▶

OSV

CVE-2012-0953: A race condition was discovered in the Linux drivers for Nvidia graphics which allowed an attacker to exfiltrate kernel memory to userspace↗2020-05-08

▶

CVEList

Kernel heap contents leak race in ioctl handler↗2020-05-08

▶

📋Vendor Advisories

Debian

CVE-2012-0953: nvidia-graphics-drivers - A race condition was discovered in the Linux drivers for Nvidia graphics which a...↗2012

▶