Nvidia Display Driver vulnerabilities

CVE-2012-0952 [MEDIUM] CWE-119 CVE-2012-0952: A heap buffer overflow was discovered in the device control ioctl in the Linux driver for Nvidia gra A heap buffer overflow was discovered in the device control ioctl in the Linux driver for Nvidia graphics cards, which may allow an attacker to overflow 49 bytes. This issue was fixed in version 295.53.

CVE-2012-0953 [MEDIUM] CWE-362 CVE-2012-0953: A race condition was discovered in the Linux drivers for Nvidia graphics which allowed an attacker t A race condition was discovered in the Linux drivers for Nvidia graphics which allowed an attacker to exfiltrate kernel memory to userspace. This issue was fixed in version 295.53.

CVE-2012-0951 [HIGH] CWE-787 CVE-2012-0951: A Memory Corruption Vulnerability exists in NVIDIA Graphics Drivers 29549 due to an unknown function A Memory Corruption Vulnerability exists in NVIDIA Graphics Drivers 29549 due to an unknown function in the file proc/driver/nvidia/registry.

CVE-2015-5950 [MEDIUM] CWE-119 CVE-2015-5950: The NVIDIA display driver R352 before 353.82 and R340 before 341.81 on Windows; R304 before 304.128, The NVIDIA display driver R352 before 353.82 and R340 before 341.81 on Windows; R304 before 304.128, R340 before 340.93, and R352 before 352.41 on Linux; and R352 before 352.46 on GRID vGPU and vSGA allows local users to write to an arbitrary kernel memory location and consequently gain privileges via a crafted ioctl call.

CVE-2013-0109 [HIGH] CWE-119 CVE-2013-0109: The NVIDIA driver before 307.78, and Release 310 before 311.00, in the NVIDIA Display Driver service The NVIDIA driver before 307.78, and Release 310 before 311.00, in the NVIDIA Display Driver service on Windows does not properly handle exceptions, which allows local users to gain privileges or cause a denial of service (memory overwrite) via a crafted application.