CVE-2014-8298

The NVIDIA Linux Discrete GPU drivers before R304.125, R331.x before R331.113, R340.x before R340.65, R343.x before R343.36, and R346.x before R346.22, Linux for Tegra (L4T) driver before R21.2, and Chrome OS driver before R40 allows remote attackers to cause a denial of service (segmentation fault and X server crash) or possibly execute arbitrary code via a crafted GLX indirect rendering protocol request.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.5 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 80%
VendorProductVersion
nvidiagpu_driver
r304.125
nvidiagpu_driver
r331.00
nvidiagpu_driver
r331.112
nvidiagpu_driver
r340.00
nvidiagpu_driver
r340.65
nvidiagpu_driver
r343.00
nvidiagpu_driver
r343.36
nvidiagpu_driver
r346.00
nvidiagpu_driver
r346.22
nvidiagpu_driver
𝑥
≤ r21.2
nvidiagpu_driver
𝑥
≤ r39
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
nvidia-graphics-drivers
bullseye/non-free
470.256.02-2
fixed
wheezy
no-dsa
squeeze
no-dsa
bookworm/non-free-firmware
535.183.01-1~deb12u1
fixed
sid/non-free-firmware
535.183.06-2
fixed
trixie/non-free-firmware
535.183.06-2
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
nvidia-graphics-drivers-304
utopic
Fixed 304.125-0ubuntu0.1
released
trusty
Fixed 304.125-0ubuntu0.0.1
released
precise
Fixed 304.125-0ubuntu0.0.0.1
released
lucid
dne
nvidia-graphics-drivers-304-updates
utopic
Fixed 304.125-0ubuntu0.1
released
trusty
Fixed 304.125-0ubuntu0.0.1
released
precise
Fixed 304.125-0ubuntu0.0.0.1
released
lucid
dne
nvidia-graphics-drivers-331
utopic
Fixed 331.113-0ubuntu0.1
released
trusty
Fixed 331.113-0ubuntu0.0.4
released
precise
Fixed 331.113-0ubuntu0.0.0.3
released
lucid
dne
nvidia-graphics-drivers-331-updates
utopic
Fixed 331.113-0ubuntu0.1
released
trusty
Fixed 331.113-0ubuntu0.0.4
released
precise
Fixed 331.113-0ubuntu0.0.0.3
released
lucid
dne
Common Weakness Enumeration
References
http://nvidia.custhelp.com/app/answers/detail/a_id/3610
http://www.oracle.com/technetwork/topics/security/bulletinjan2015-2370101.html
http://nvidia.custhelp.com/app/answers/detail/a_id/3610
http://www.oracle.com/technetwork/topics/security/bulletinjan2015-2370101.html