CVE-2020-5967Race Condition in Nvidia Geforce Firmware

CWE-362Race Condition9 documents6 sources
Severity
4.7MEDIUMNVD
OSV7.8
EPSS
0.0%
top 88.68%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
6
Nvidia Geforce FirmwareNvidia NVS FirmwareNvidia Quadro Firmware+3 more
Timeline
PublishedJun 25
Latest updateMay 24

Description

NVIDIA Linux GPU Display Driver, all versions, contains a vulnerability in the UVM driver, in which a race condition may lead to a denial of service.

CVSS vector

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 1.0 | Impact: 3.6

Affected Packages5 packages

NVDnvidia/nvs_firmware390390.138+2
NVDnvidia/tesla_firmware418418.152.00+2
NVDnvidia/quadro_firmware390390.138+2
NVDnvidia/geforce_firmware390390.138+2

Also affects: Ubuntu Linux 18.04, 19.10, 20.04

🔴Vulnerability Details

5
GHSA
GHSA-xmqv-9j73-gq5h: NVIDIA Linux GPU Display Driver, all versions, contains a vulnerability in the UVM driver, in which a race condition may lead to a denial of service2022-05-24
OSV
CVE-2020-5967: NVIDIA Linux GPU Display Driver, all versions, contains a vulnerability in the UVM driver, in which a race condition may lead to a denial of service2020-06-25
CVEList
CVE-2020-5967: NVIDIA Linux GPU Display Driver, all versions, contains a vulnerability in the UVM driver, in which a race condition may lead to a denial of service2020-06-25
OSV
nvidia-graphics-drivers-390, nvidia-graphics-drivers-440 vulnerabilities2020-06-25
OSV
linux kernel vulnerabilities2020-06-25

📋Vendor Advisories

3
Ubuntu
Linux kernel vulnerabilities2020-06-25
Ubuntu
NVIDIA graphics drivers vulnerabilities2020-06-25
Debian
CVE-2020-5967: nvidia-graphics-drivers - NVIDIA Linux GPU Display Driver, all versions, contains a vulnerability in the U...2020
CVE-2020-5967 — Race Condition in Nvidia | cvebase