Page 1 of 2 12 LastLast
Results 1 to 10 of 18

Thread: NVIDIA Fixes Linux GPU Driver Security Hole

  1. #1
    Join Date
    Jan 2007
    Posts
    15,182

    Default NVIDIA Fixes Linux GPU Driver Security Hole

    Phoronix: NVIDIA Fixes Linux GPU Driver Security Hole

    Days after it was publicly revealed that a security vulnerability in the NVIDIA Linux driver easily yields root system access, NVIDIA has updated their proprietary graphics driver to address this problem...

    http://www.phoronix.com/vr.php?view=MTE1Mzk

  2. #2
    Join Date
    Feb 2012
    Posts
    475

    Default

    Cool. The blue tint in games is also fixed, at least according to the changelog, I haven't installed it yet to personally check.

  3. #3
    Join Date
    Dec 2009
    Posts
    110

    Default

    Quote Originally Posted by Gusar View Post
    Cool. The blue tint in games is also fixed, at least according to the changelog, I haven't installed it yet to personally check.
    Confirmed, the blue tint is gone here with XBMC.

  4. #4
    Join Date
    Dec 2010
    Posts
    40

    Default

    i would like to see this kind of fast response for amd. I think they`ll fix 12.6 driver in like 3 months not a few days.

  5. #5
    Join Date
    Jan 2012
    Posts
    113

    Default

    Quote Originally Posted by adriankx View Post
    i would like to see this kind of fast response for amd. I think they`ll fix 12.6 driver in like 3 months not a few days.
    Don't forget that NVIDIA apparently did not give a shit until this security issue got publicly disclosed: "I was given this anonymously, it has been sent to nvidia over a month ago with no reply or advisory and the original author wishes to remain anonymous but would like to have the exploit published at this time, so I said I'd post it for them."

    And only then they pulled their act together

  6. #6
    Join Date
    Feb 2012
    Posts
    475

    Default

    @ssvb: You're totally right about the security issue, but it's possible adriankx is talking about the blue tint. That one did get fixed really, really fast. Of course it's also possible that if the security thing didn't force them to release a driver right now, we wouldn't get a blue tint fix this fast
    Last edited by Gusar; 08-04-2012 at 06:35 PM.

  7. #7
    Join Date
    Aug 2011
    Location
    somewhere
    Posts
    20

    Default

    Fedora users will be likely to get this version soon, I'm currently using 304.30 with stable rpmfusion repos.

  8. #8
    Join Date
    Dec 2011
    Posts
    2,122

    Default Vulnerable for years?

    Nvidia have known about this security vulnerability for a month without doing anything.
    They were notified of this security vulnerability and totally ignored it and did absolutely nothing!

    Then the guy who notified them about it, contacted David Airlie about who publically announced it and only then Nvidia decided to fix it.
    How long have the driver suffered from this security vulnerability?

    This could have been found by an independent security researcher years ago. This may have been used for years to attack computers.

  9. #9
    Join Date
    Feb 2012
    Posts
    475

    Default

    Quote Originally Posted by uid313 View Post
    How long have the driver suffered from this security vulnerability?

    This could have been found by an independent security researcher years ago. This may have been used for years to attack computers.
    This can be said for any vulnerability in any software, so I don't know why you're pointing it out here as something special.

  10. #10
    Join Date
    Dec 2011
    Posts
    2,122

    Default

    Quote Originally Posted by Gusar View Post
    This can be said for any vulnerability in any software, so I don't know why you're pointing it out here as something special.
    Because Nvidia totally ignored the issue even when people notified them of the vulnerability.
    If this was in open source driver, then it would have gotten fixed as soon as possible. When notified, there would be a fix hours later.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •