USN-4404-1: NVIDIA graphics drivers vulnerabilities
25 June 2020
Several security issues were fixed in NVIDIA graphics drivers.
Releases
Packages
- nvidia-graphics-drivers-390 - NVIDIA binary X.Org driver
- nvidia-graphics-drivers-440 - NVIDIA binary X.Org driver
Details
Thomas E. Carroll discovered that the NVIDIA Cuda grpahics driver did not
properly perform access control when performing IPC. An attacker could use
this to cause a denial of service or possibly execute arbitrary code.
(CVE-2020-5963)
It was discovered that the UVM driver in the NVIDIA graphics driver
contained a race condition. A local attacker could use this to cause a
denial of service. (CVE-2020-5967)
It was discovered that the NVIDIA virtual GPU guest drivers contained
an unspecified vulnerability that could potentially lead to privileged
operation execution. An attacker could use this to cause a denial of
service. (CVE-2020-5973)
Update instructions
The problem can be corrected by updating your system to the following package versions:
Ubuntu 20.04
-
xserver-xorg-video-nvidia-390
-
390.138-0ubuntu0.20.04.1
-
xserver-xorg-video-nvidia-440
-
440.100-0ubuntu0.20.04.1
Ubuntu 19.10
-
xserver-xorg-video-nvidia-390
-
390.138-0ubuntu0.19.10.1
-
xserver-xorg-video-nvidia-440
-
440.100-0ubuntu0.19.10.1
Ubuntu 18.04
-
xserver-xorg-video-nvidia-390
-
390.138-0ubuntu0.18.04.1
-
xserver-xorg-video-nvidia-440
-
440.100-0ubuntu0.18.04.1
After a standard system update you need to reboot your computer to make
all the necessary changes.
References
Related notices
- USN-4404-2: linux-image-5.4.0-1019-azure, linux-image-lowlatency-hwe-16.04-edge, linux-image-oracle-lts-18.04, linux-image-4.15.0-108-generic, linux-aws-5.3, linux-azure-5.3, linux-image-gcp, linux-image-4.15.0-1076-aws, linux-oem-osp1, linux-image-gke, linux-image-5.3.0-1028-aws, linux-image-lowlatency-hwe-20.04, linux-image-5.4.0-39-generic-lpae, linux-image-5.3.0-61-lowlatency, linux-image-generic-hwe-18.04-edge, linux-image-snapdragon-hwe-18.04, linux-image-5.3.0-61-generic-lpae, linux-image-5.3.0-1029-gcp, linux, linux-image-5.4.0-1017-aws, linux-image-lowlatency, linux-image-lowlatency-hwe-18.04-edge, linux-image-4.15.0-1090-oem, linux-image-azure, linux-image-virtual-hwe-16.04-edge, linux-oracle-5.3, linux-image-lowlatency-hwe-18.04, linux-image-virtual-hwe-20.04, linux-image-azure-edge, linux-image-virtual-hwe-18.04-edge, linux-image-4.15.0-1047-oracle, linux-oracle, linux-image-generic, linux-image-virtual-hwe-18.04, linux-image-5.0.0-1062-oem-osp1, linux-image-5.3.0-61-snapdragon, linux-image-virtual-hwe-16.04, linux-image-5.4.0-1018-gcp, linux-image-generic-lpae, linux-image-oem, linux-image-generic-lpae-hwe-16.04, linux-azure, linux-gcp-5.3, linux-image-snapdragon, linux-image-aws-lts-18.04, linux-image-lowlatency-hwe-16.04, linux-image-generic-hwe-16.04, linux-oem, linux-image-aws-edge, linux-image-5.3.0-1027-oracle, linux-image-aws, linux-image-5.3.0-1031-azure, linux-image-gkeop-5.3, linux-image-5.4.0-39-generic, linux-image-5.4.0-39-lowlatency, linux-gcp, linux-image-5.4.0-1018-oracle, linux-aws, linux-image-5.3.0-61-generic, linux-image-generic-hwe-18.04, linux-image-generic-hwe-20.04, linux-image-generic-lpae-hwe-16.04-edge, linux-image-oem-osp1, linux-image-oracle, linux-hwe, linux-image-generic-lpae-hwe-18.04, linux-image-gcp-edge, linux-image-4.15.0-108-generic-lpae, linux-image-4.15.0-108-lowlatency, linux-image-generic-hwe-16.04-edge, linux-image-generic-lpae-hwe-18.04-edge, linux-image-virtual, linux-image-generic-lpae-hwe-20.04, linux-image-oracle-edge