CVE-2022-42263: Integer Overflow
First published: Fri Dec 30 2022(Updated: )
NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel mode layer handler, where an Integer overflow may lead to denial of service or information disclosure.
Credit: psirt@nvidia.com psirt@nvidia.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| NVIDIA Virtual GPU | <11.11 | |
| NVIDIA Virtual GPU | >=12.0<13.6 | |
| NVIDIA Virtual GPU | >=14.0<14.4 | |
| Citrix Hypervisor | ||
| Linux Linux kernel | ||
| Redhat Enterprise Linux Kernel-based Virtual Machine | ||
| VMware vSphere | ||
| Nvidia Cloud Gaming | <525.60.11 | |
| Nvidia Cloud Gaming | <525.60.12 | |
| Nvidia Gpu Display Driver | >=470<470.161.03 | |
| Nvidia Gpu Display Driver | >=510<510.108.03 | |
| Nvidia Gpu Display Driver | >=515<515.86.01 | |
| Nvidia Geforce | ||
| Nvidia Nvs | ||
| Nvidia Quadro | ||
| Nvidia Rtx | ||
| Nvidia Gpu Display Driver | >=450<450.216.04 | |
| Nvidia Tesla |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this NVIDIA GPU Display Driver vulnerability?
The vulnerability ID for this NVIDIA GPU Display Driver vulnerability is CVE-2022-42263.
What is the severity of CVE-2022-42263?
The severity of CVE-2022-42263 is high (7.1).
What software versions are affected by CVE-2022-42263?
Nvidia Virtual Gpu versions up to and excluding 11.11, 12.0 to 13.6, 14.0 to 14.4, and Nvidia Gpu Display Driver versions 470 to 470.161.03, 510 to 510.108.03, and 515 to 515.86.01 are affected by CVE-2022-42263.
What are the potential impacts of CVE-2022-42263?
CVE-2022-42263 may lead to denial of service or information disclosure.
Where can I find more information about CVE-2022-42263?
You can find more information about CVE-2022-42263 at the following references: [NVIDIA Customer Help Center](https://nvidia.custhelp.com/app/answers/detail/a_id/5415) and [Gentoo Security Advisory GLSA 202310-02](https://security.gentoo.org/glsa/202310-02).
- collector/nvd-api
- collector/nvd-index
- agent/severity
- agent/weakness
- agent/references
- agent/author
- agent/description
- agent/type
- agent/event
- agent/last-modified-date
- agent/first-publish-date
- agent/softwarecombine
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/nvidia
- canonical/nvidia virtual gpu
- version/nvidia virtual gpu/12.0
- version/nvidia virtual gpu/14.0
- vendor/citrix
- canonical/citrix hypervisor
- vendor/linux
- canonical/linux linux kernel
- vendor/redhat
- canonical/redhat enterprise linux kernel-based virtual machine
- vendor/vmware
- canonical/vmware vsphere
- canonical/nvidia cloud gaming
- canonical/nvidia gpu display driver
- version/nvidia gpu display driver/470
- version/nvidia gpu display driver/510
- version/nvidia gpu display driver/515
- canonical/nvidia geforce
- canonical/nvidia nvs
- canonical/nvidia quadro
- canonical/nvidia rtx
- version/nvidia gpu display driver/450
- canonical/nvidia tesla