CVE-2021-1052
published 2021-01-08CVE-2021-1052: NVIDIA GPU Display Driver for Windows and Linux, all versions, contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgkDdiEscape or…
high7.8CVSS 3.1
AVLACLPRLUINSUCHIHAH
NVIDIA GPU Display Driver for Windows and Linux, all versions, contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgkDdiEscape or IOCTL in which user-mode clients can access legacy privileged APIs, which may lead to denial of service, escalation of privileges, and information disclosure.
Affected
14 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | nvidia-graphics-drivers | < nvidia-graphics-drivers 460.32.03-1 (bookworm) | nvidia-graphics-drivers 460.32.03-1 (bookworm) |
| debian | nvidia-graphics-drivers-tesla-450 | < nvidia-graphics-drivers 460.32.03-1 (bookworm) | nvidia-graphics-drivers 460.32.03-1 (bookworm) |
| linux | linux_kernel | >= 0 < 4.15.0-134.138 | 4.15.0-134.138 |
| linux | linux_kernel | >= 0 < 4.15.0-130.134 | 4.15.0-130.134 |
| linux | linux_kernel | >= 0 < 5.4.0-64.72 | 5.4.0-64.72 |
| linux | linux_kernel | >= 0 < 5.4.0-60.67 | 5.4.0-60.67 |
| nvidia | gpu_driver | >= 390 < 392.63 | 392.63 |
| nvidia | gpu_driver | >= 390 < 390.141 | 390.141 |
| nvidia | gpu_driver | >= 418 < 427.11 | 427.11 |
| nvidia | gpu_driver | >= 450 < 452.77 | 452.77 |
| nvidia | gpu_driver | >= 450 < 450.102.04 | 450.102.04 |
| nvidia | gpu_driver | >= 460 < 461.09 | 461.09 |
| nvidia | gpu_driver | >= 460 < 460.32.03 | 460.32.03 |
| nvidia | nvidia_gpu_display_driver | — | — |
CVSS provenance
nvdv3.17.8HIGHCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
osv7.8HIGH