First published: Fri Dec 30 2022(Updated: )
NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel mode layer handler, where an unhandled return value can lead to a null-pointer dereference, which may lead to denial of service.
Credit: psirt@nvidia.com psirt@nvidia.com
Affected Software | Affected Version | How to fix |
---|---|---|
NVIDIA Virtual GPU | <11.11 | |
NVIDIA Virtual GPU | >=12.0<13.6 | |
NVIDIA Virtual GPU | >=14.0<14.4 | |
Citrix Hypervisor | ||
Linux Linux kernel | ||
Redhat Enterprise Linux Kernel-based Virtual Machine | ||
VMware vSphere | ||
Nvidia Cloud Gaming | <525.60.11 | |
Nvidia Cloud Gaming | <525.60.12 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID for this NVIDIA GPU vulnerability is CVE-2022-34679.
The severity rating of CVE-2022-34679 is medium.
If this vulnerability is exploited, it can lead to a null-pointer dereference, which may result in denial of service.
NVIDIA Virtual GPU versions up to 11.11, versions between 12.0 and 13.6, and versions between 14.0 and 14.4 are affected by CVE-2022-34679.
To fix CVE-2022-34679, it is recommended to update to a version of NVIDIA Virtual GPU that is not vulnerable.