CVE-2017-6272
published 2017-09-22CVE-2017-6272: NVIDIA GPU Display Driver contains a vulnerability in the kernel mode layer handler where a value passed from a user to the driver is not correctly validated…
high7.8CVSS 3.0
AVLACLPRLUINSUCHIHAH
NVIDIA GPU Display Driver contains a vulnerability in the kernel mode layer handler where a value passed from a user to the driver is not correctly validated and used as the index to an array which may lead to a denial of service or possible escalation of privileges.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | nvidia-graphics-drivers | < nvidia-graphics-drivers 384.98-2 (bookworm) | nvidia-graphics-drivers 384.98-2 (bookworm) |
| debian | nvidia-graphics-drivers-legacy-340xx | < nvidia-graphics-drivers 384.98-2 (bookworm) | nvidia-graphics-drivers 384.98-2 (bookworm) |
| nvidia | gpu_driver | <= 362.00 | — |
| nvidia_corporation | gpu_display_driver | — | — |
CVSS provenance
nvdv3.07.8HIGHCVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
osv7.8HIGH