drag
10-16-2006, 05:18 PM
Oh, this is a nice one:
http://download2.rapid7.com/r7-0025/
Security vunerabilities in Nvidia binary drivers.
With active proof-of-concept exploit for Linux. This is not only a local vunerability with X + nvidia drivers, but it can be remotely exploitable.. for instance if your browsing to a malicious website it's possible for somebody to have your browser display something _which_could_give_them_root_access_.
This is a problem with how Nvidia accelerates rendering of text. This is a very very serious problem.
This bug has been around for years now. First reported in 2004 it took nearly 2 years for Nvidia to aknowledge the problem, which was in July 2006 and they still haven't fixed it.
To me this is headlines-style stuff.
http://download2.rapid7.com/r7-0025/
Security vunerabilities in Nvidia binary drivers.
With active proof-of-concept exploit for Linux. This is not only a local vunerability with X + nvidia drivers, but it can be remotely exploitable.. for instance if your browsing to a malicious website it's possible for somebody to have your browser display something _which_could_give_them_root_access_.
This is a problem with how Nvidia accelerates rendering of text. This is a very very serious problem.
This bug has been around for years now. First reported in 2004 it took nearly 2 years for Nvidia to aknowledge the problem, which was in July 2006 and they still haven't fixed it.
To me this is headlines-style stuff.