Buffer Overflow in NVIDIA Binary Graphics Driver For Linux

iceni60 · Oct 18, 2006

i don't know where to post this, i just installed the lastest beta driver instead because the exploit has been fixed in it, i don't know how serious the exploit is though.
http://download2.rapid7.com/r7-0025/

KNOWN VULNERABLE:
o NVIDIA Driver For Linux v8774
o NVIDIA Driver For Linux v8762
Click to expand...

you can get the beta driver from here -
http://www.nzone.com/object/nzone_downloads_linux_display_x86_1.0-9625.html

if you use suse you can do this to update to the beta -

ctrl-alt-F1

login as root, or login and get root

init 3

if you get an error saying an x server is running you have to run this - rm -rf /tmp/.X0-lock

nvidia-installer --update

Mrkvonic · Oct 19, 2006

Hello,
Could you link to advisory?
Mrk

iceni60 · Oct 19, 2006

http://www.securityfocus.com/brief/331
http://www.securityfocus.com/bid/20559

you can click on the links where it says -
info discussion exploit solution references

Mrkvonic · Oct 19, 2006

Hello,
Thanks for the info.
Mrk

iceni60 · Oct 20, 2006

here's the updated driver which doesn't have the vulnerbility -
http://www.nvidia.com/object/unix.html

click on the driver for your system and it explains about it on the next page.

EDIT, i just did an update in SUSE the way i described in post#1. so this driver only came out in the last 24 hours.

Log in or Sign up

Buffer Overflow in NVIDIA Binary Graphics Driver For Linux

iceni60 ( ^o^)

Mrkvonic Linux Systems Expert

iceni60 ( ^o^)

Mrkvonic Linux Systems Expert

iceni60 ( ^o^)

Log in or Sign up

Buffer Overflow in NVIDIA Binary Graphics Driver For Linux

iceni60 ( ^o^)

Mrkvonic Linux Systems Expert

iceni60 ( ^o^)

Mrkvonic Linux Systems Expert

iceni60 ( ^o^)

Useful Searches