First published: Thu Nov 10 2022(Updated: )
NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability in the kernel mode layer, where a local user with basic capabilities can cause a null-pointer dereference, which may lead to denial of service.
Credit: psirt@nvidia.com psirt@nvidia.com
Affected Software | Affected Version | How to fix |
---|---|---|
NVIDIA Virtual GPU | <11.9 | |
NVIDIA Virtual GPU | >=13.0<13.4 | |
NVIDIA Virtual GPU | >=14.0<14.2 | |
Linux Linux kernel | ||
Microsoft Windows | ||
Nvidia Cloud Gaming | <516.94 | |
Nvidia Cloud Gaming | <515.65.01 | |
Citrix Hypervisor | ||
Redhat Enterprise Linux Kernel-based Virtual Machine |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID is CVE-2022-34666.
The severity of CVE-2022-34666 is medium (5.5).
The affected software includes Nvidia Virtual Gpu (up to version 11.9), Nvidia Virtual Gpu (version 13.0 to 13.4), Nvidia Virtual Gpu (version 14.0 to 14.2), Nvidia Cloud Gaming (up to version 516.94), and Nvidia Cloud Gaming (up to version 515.65.01).
CVE-2022-34666 can lead to denial of service (DoS) if exploited by a local user with basic capabilities.
No, Linux and Microsoft Windows are not affected by CVE-2022-34666.
You can find more information about CVE-2022-34666 in the following references: [Nvidia Customer Help](https://nvidia.custhelp.com/app/answers/detail/a_id/5383) and [Gentoo Security](https://security.gentoo.org/glsa/202310-02).