Results 1 to 10 of 17

Thread: NVIDIA 295.40 Closes High-Risk Security Flaw

Hybrid View

  1. #1
    Join Date
    Jan 2007
    Posts
    15,611

    Default NVIDIA 295.40 Closes High-Risk Security Flaw

    Phoronix: NVIDIA 295.40 Closes High-Risk Security Flaw

    NVIDIA's Linux team this morning announced the immediate release of the 295.40 Linux driver. There aren't many changes for this release compared to the recent 295.33 driver release, but it does address a high-risk security vulnerability...

    http://www.phoronix.com/vr.php?view=MTA4NTk

  2. #2
    Join Date
    Nov 2009
    Location
    Italy
    Posts
    990

    Default

    We all love blobs

  3. #3
    Join Date
    Jul 2008
    Location
    Greece
    Posts
    3,801

    Default

    Quote Originally Posted by darkbasic View Post
    We all love blobs
    Yes, we're still using a never-updated, initially released Debian 5 in our servers, since its packages are open source and therefore don't have security problems and thus don't need security updates.

    Dude, seriously :-P

  4. #4
    Join Date
    Dec 2011
    Posts
    2,191

    Default How long?

    I wonder how long this vulnerability have been known.
    It's just recently been officially announced as discovered, but may have been privately known for years.

    I want open source!

  5. #5
    Join Date
    Jul 2008
    Location
    Greece
    Posts
    3,801

    Default

    Quote Originally Posted by uid313 View Post
    I wonder how long this vulnerability have been known.
    It's just recently been officially announced as discovered, but may have been privately known for years.

    I want open source!
    Like the root exploits in the Linux kernel that were there for years? Or the Debian SSL disaster? Give me a break.

  6. #6
    Join Date
    Mar 2009
    Location
    Brasil
    Posts
    43

    Default

    http://www.reddit.com/r/linux/commen...nvidia/c4aynv6

    Seems to be an old vulnerability, fixed years ago by open source drivers

  7. #7

    Default

    Quote Originally Posted by RealNC View Post
    Like the root exploits in the Linux kernel that were there for years? Or the Debian SSL disaster? Give me a break.
    The case is if those exploits were known. If they weren't then what's your point? The only thing that really matters is a time needed for fixing an exploit and Linux is probably the fastest in this. However, according to Phoronix article it seems nVidia does a good job as well.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •