CVE-2015-5950

The NVIDIA display driver R352 before 353.82 and R340 before 341.81 on Windows; R304 before 304.128, R340 before 340.93, and R352 before 352.41 on Linux; and R352 before 352.46 on GRID vGPU and vSGA allows local users to write to an arbitrary kernel memory location and consequently gain privileges via a crafted ioctl call.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
6.9 UNKNOWN
LOCAL
MEDIUM
AV:L/AC:M/Au:N/C:C/I:C/A:C
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 29%
VendorProductVersion
nvidiagpu_driver
𝑥
≤ 352.30
nvidiadisplay_driver
𝑥
≤ 352.09
nvidiadisplay_driver
304.108
nvidiadisplay_driver
304.119
nvidiadisplay_driver
304.121
nvidiadisplay_driver
304.123
nvidiadisplay_driver
304.125
nvidiadisplay_driver
352.21
nvidiadisplay_driver
352.30
nvidiadisplay_driver
𝑥
≤ 352.86
nvidiadisplay_driver
340.43
nvidiadisplay_driver
340.52
nvidiadisplay_driver
341.44
nvidiadisplay_driver
353.06
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
nvidia-graphics-drivers
bullseye/non-free
470.256.02-2
fixed
jessie
no-dsa
wheezy
no-dsa
squeeze
no-dsa
bookworm/non-free-firmware
535.183.01-1~deb12u1
fixed
sid/non-free-firmware
535.183.06-2
fixed
trixie/non-free-firmware
535.183.06-2
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
nvidia-graphics-drivers
vivid
dne
trusty
dne
precise
not-affected
nvidia-graphics-drivers-173
vivid
dne
trusty
dne
precise
not-affected
nvidia-graphics-drivers-173-updates
vivid
dne
trusty
dne
precise
not-affected
nvidia-graphics-drivers-304
vivid
Fixed 304.128-0ubuntu0.1
released
trusty
Fixed 304.128-0ubuntu0.0.1
released
precise
Fixed 304.128-0ubuntu0.0.0.1
released
nvidia-graphics-drivers-304-updates
vivid
Fixed 304.128-0ubuntu0.1
released
trusty
Fixed 304.128-0ubuntu0.0.1
released
precise
Fixed 304.128-0ubuntu0.0.0.1
released
nvidia-graphics-drivers-310-updates
vivid
ignored
trusty
dne
precise
dne
nvidia-graphics-drivers-319
vivid
ignored
trusty
dne
precise
ignored
nvidia-graphics-drivers-319-updates
vivid
ignored
trusty
dne
precise
ignored
nvidia-graphics-drivers-331
vivid
ignored
trusty
dne
precise
Fixed 340.93-0ubuntu0.0.0.1
released
nvidia-graphics-drivers-331-updates
vivid
ignored
trusty
dne
precise
Fixed 340.93-0ubuntu0.0.0.1
released
nvidia-graphics-drivers-340
vivid
Fixed 340.93-0ubuntu0.1
released
trusty
Fixed 340.93-0ubuntu0.0.1
released
precise
Fixed 340.93-0ubuntu0.0.0.1
released
nvidia-graphics-drivers-340-updates
vivid
Fixed 340.93-0ubuntu0.1
released
trusty
Fixed 340.93-0ubuntu0.0.1
released
precise
Fixed 340.93-0ubuntu0.0.0.1
released
nvidia-graphics-drivers-346
vivid
Fixed 346.96-0ubuntu0.1
released
trusty
Fixed 346.96-0ubuntu0.0.1
released
precise
dne
nvidia-graphics-drivers-346-updates
vivid
Fixed 346.96-0ubuntu0.1
released
trusty
Fixed 346.96-0ubuntu0.0.1
released
precise
dne
nvidia-graphics-drivers-352
vivid
not-affected
trusty
dne
precise
dne
nvidia-graphics-drivers-352-updates
vivid
not-affected
trusty
dne
precise
dne
nvidia-graphics-drivers-96
vivid
dne
trusty
dne
precise
not-affected
nvidia-graphics-drivers-96-updates
vivid
dne
trusty
dne
precise
not-affected
nvidia-graphics-drivers-experimental-304
vivid
dne
trusty
dne
precise
ignored
nvidia-graphics-drivers-experimental-310
vivid
dne
trusty
dne
precise
ignored
nvidia-graphics-drivers-tegra
vivid
dne
trusty
dne
precise
not-affected
nvidia-graphics-drivers-updates
vivid
dne
trusty
dne
precise
not-affected
Common Weakness Enumeration
References
http://nvidia.custhelp.com/app/answers/detail/a_id/3763/~/cve-2015-5950-memory-corruption-due-to-an-unsanitized-pointer-in-the-nvidia
http://www.securitytracker.com/id/1033662
http://www.ubuntu.com/usn/USN-2747-1
https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04815468
https://h20566.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04815468
https://support.lenovo.com/us/en/product_security/len_3313
http://nvidia.custhelp.com/app/answers/detail/a_id/3763/~/cve-2015-5950-memory-corruption-due-to-an-unsanitized-pointer-in-the-nvidia
http://www.securitytracker.com/id/1033662
http://www.ubuntu.com/usn/USN-2747-1
https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04815468
https://h20566.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04815468
https://support.lenovo.com/us/en/product_security/len_3313