Overview

File _patchinfo of Package patchinfo.32205

<patchinfo incident="32205">
  <packager>sndirsch</packager>
  <issue tracker="bnc" id="1220552"/>
  <issue tracker="cve" id="2024-0074"/>
  <issue tracker="cve" id="2024-0075"/>
  <issue tracker="cve" id="2022-42265"/>

<issue tracker="jsc" id="PED-7117"/>
  <rating>important</rating>
  <category>security</category>
  <summary>Security update for kernel-firmware-nvidia-gspx-G06, nvidia-open-driver-G06-signed</summary>
  <description>This update for kernel-firmware-nvidia-gspx-G06, nvidia-open-driver-G06-signed fixes the following issues:

Update to 550.54.14

* Added vGPU Host and vGPU Guest support. For vGPU Host, please
  refer to the README.vgpu packaged in the vGPU Host Package for
  more details.

Security issues fixed:

* CVE-2024-0074: A user could trigger a NULL ptr dereference.
* CVE-2024-0075: A user could overwrite the end of a buffer, leading to crashes or code execution.
* CVE-2022-42265: A unprivileged user could trigger an integer overflow which could lead to crashes or code execution.


- create /run/udev/static_node-tags/uaccess/nvidia${devid} symlinks
  also during modprobing the nvidia module; this changes the issue
  of not having access to /dev/nvidia${devid}, when gfxcard has
  been replaced by a different gfx card after installing the driver

- provide nvidia-open-driver-G06-kmp (jsc#PED-7117)
  * this makes it easy to replace the package from nVidia's
    CUDA repository with this presigned package

</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places