CVE-2018-3979

EUVD-2018-15765

01.04.2019, 21:30

A remote denial-of-service vulnerability exists in the way the Nouveau Display Driver (the default Ubuntu Nvidia display driver) handles GPU shader execution. A specially crafted pixel shader can cause remote denial-of-service issues. An attacker can provide a specially crafted website to trigger this vulnerability. This vulnerability can be triggered remotely after the user visits a malformed website. No further user interaction is required. Vulnerable versions include Ubuntu 18.04 LTS (linux 4.15.0-29-generic x86_64), Nouveau Display Driver NV117 (vermagic: 4.15.0-29-generic SMP mod_unload).

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	Primary	6.5 MEDIUM	NETWORK	LOW	NONE	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
talos	CNA	7.4 HIGH	NETWORK	LOW	NONE	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:N/A:H

Base Score

CVSS 3.x

EPSS Score

Percentile: 62%

Affected Products (NVD)

Vendor	Product	Version
canonical	ubuntu_linux	18.04
nvidia	geforce_gtx_745_firmware	-
nvidia	geforce_gtx_750_firmware	-
nvidia	geforce_gtx_750_ti_firmware	-
nvidia	geforce_gtx_840m_firmware	-
nvidia	geforce_gtx_845m_firmware	-
nvidia	geforce_gtx_850m_firmware	-
nvidia	geforce_gtx_860m_firmware	-
nvidia	geforce_gtx_950m_firmware	-
nvidia	geforce_gtx_960m_firmware	-
nvidia	quadro_k620_firmware	-
nvidia	quadro_k1200_firmware	-
nvidia	quadro_k2200_firmware	-
nvidia	quadro_m1000m_firmware	-
nvidia	quadro_m1200m_firmware	-
nvidia	grid_m30_firmware	-
nvidia	grid_m40_firmware	-

𝑥

= Vulnerable software versions

Debian Releases

Debian Product

Codename

xserver-xorg-video-nouveau

bookworm	unimportant
bullseye	unimportant
sid	unimportant
trixie	unimportant

Ubuntu Releases

Ubuntu Product

Codename

xserver-xorg-video-nouveau

bionic	deferred
cosmic	ignored
disco	ignored
eoan	ignored
focal	deferred
groovy	ignored
hirsute	ignored
impish	ignored
jammy	deferred
kinetic	ignored
lunar	ignored
mantic	ignored
noble	deferred
trusty	dne
xenial	deferred

xserver-xorg-video-nouveau-hwe-16.04

bionic	dne
cosmic	dne
disco	dne
eoan	dne
focal	dne
groovy	dne
hirsute	dne
impish	dne
jammy	dne
kinetic	dne
lunar	dne
mantic	dne
noble	dne
trusty	dne
xenial	deferred

xserver-xorg-video-nouveau-hwe-18.04

bionic	deferred
cosmic	dne
disco	dne
eoan	dne
focal	dne
groovy	dne
hirsute	dne
impish	dne
jammy	dne
kinetic	dne
lunar	dne
mantic	dne
noble	dne
trusty	dne
xenial	dne

Known Exploits!

Common Weakness Enumeration

CWE-400 - Uncontrolled Resource Consumption
The software does not properly control the allocation and maintenance of a limited resource, thereby enabling an actor to influence the amount of resources consumed, eventually leading to the exhaustion of available resources.

References

https://talosintelligence.com/vulnerability_reports/TALOS-2018-0647