Buffer Overflow in NVIDIA Binary Graphics Driver For Linux

Discussion in 'other security issues & news' started by iceni60, Oct 18, 2006.

Thread Status:
Not open for further replies.
  1. iceni60

    iceni60 ( ^o^)

    Joined:
    Jun 29, 2004
    Posts:
    5,116
    i don't know where to post this, i just installed the lastest beta driver instead because the exploit has been fixed in it, i don't know how serious the exploit is though.
    http://download2.rapid7.com/r7-0025/

    you can get the beta driver from here -
    http://www.nzone.com/object/nzone_downloads_linux_display_x86_1.0-9625.html

    if you use suse you can do this to update to the beta -

    ctrl-alt-F1

    login as root, or login and get root

    init 3


    if you get an error saying an x server is running you have to run this - rm -rf /tmp/.X0-lock

    nvidia-installer --update
     
  2. Mrkvonic

    Mrkvonic Linux Systems Expert

    Joined:
    May 9, 2005
    Posts:
    8,698
    Hello,
    Could you link to advisory?
    Mrk
     
  3. iceni60

    iceni60 ( ^o^)

    Joined:
    Jun 29, 2004
    Posts:
    5,116
  4. Mrkvonic

    Mrkvonic Linux Systems Expert

    Joined:
    May 9, 2005
    Posts:
    8,698
    Hello,
    Thanks for the info.
    Mrk
     
  5. iceni60

    iceni60 ( ^o^)

    Joined:
    Jun 29, 2004
    Posts:
    5,116
    here's the updated driver which doesn't have the vulnerbility -
    http://www.nvidia.com/object/unix.html

    click on the driver for your system and it explains about it on the next page.

    EDIT, i just did an update in SUSE the way i described in post#1. so this driver only came out in the last 24 hours.
     
    Last edited: Oct 20, 2006
Loading...
Thread Status:
Not open for further replies.