NVIDIA Blob Has Security Hole, Again

Written by Michael Larabel in Linux Security on 22 August 2007 at 09:34 AM EDT. 5 Comments
LINUX SECURITY
Another security problem has crept up with NVIDIA's binary blob display driver for their GeForce and Quadro graphics cards. When the NVIDIA Linux display driver is installed with Gentoo Linux, poor file permissions are used with /dev/nvidia*, which could result in compromised software or even damage to your NVIDIA hardware. The latest NVIDIA Linux display driver (100.14.11) is not affected but v100.14.09 does contain the potential problem. You may recall last year that the NVIDIA Linux driver had another security exploit that could allow attackers to execute code locally or remotely with root access. That problem was around since 2004 but was fixed in the 1.0-9XXX driver series.
Related News
About The Author
Michael Larabel

Michael Larabel is the principal author of Phoronix.com and founded the site in 2004 with a focus on enriching the Linux hardware experience. Michael has written more than 20,000 articles covering the state of Linux hardware support, Linux performance, graphics drivers, and other topics. Michael is also the lead developer of the Phoronix Test Suite, Phoromatic, and OpenBenchmarking.org automated benchmarking software. He can be followed via Twitter, LinkedIn, or contacted via MichaelLarabel.com.

Popular News This Week