CVE-2021-1056
Published: 7 January 2021
NVIDIA GPU Display Driver for Linux, all versions, contains a vulnerability in the kernel mode layer (nvidia.ko) in which it does not completely honor operating system file system permissions to provide GPU device-level isolation, which may lead to denial of service or information disclosure.
From the Ubuntu Security Team
Xinyuan Lyu discovered that the NVIDIA GPU display driver for the Linux kernel did not properly restrict device-level GPU isolation. A local attacker could use this to cause a denial of service or possibly expose sensitive information.
Notes
Author | Note |
---|---|
alexmurray | CVE-2021-1052, CVE-2021-1053, and CVE-2021-1056 affect the following NVIDIA driver series: 450, 455, 418-server, 440-server, 450-server |
sbeattie | NVIDIA series 455 are superseded by the 460 series. NVIDIA series 440-server are superseded by 450-server. |
Priority
Status
Package | Release | Status |
---|---|---|
nvidia-graphics-drivers-390 Launchpad, Ubuntu, Debian |
bionic |
Released
(390.141-0ubuntu0.18.04.1)
|
focal |
Released
(390.141-0ubuntu0.20.04.1)
|
|
groovy |
Released
(390.141-0ubuntu0.20.10.1)
|
|
trusty |
Does not exist
|
|
upstream |
Needs triage
|
|
xenial |
Does not exist
|
|
nvidia-graphics-drivers-418-server Launchpad, Ubuntu, Debian |
bionic |
Released
(418.181.07-0ubuntu0.18.04.1)
|
focal |
Released
(418.181.07-0ubuntu0.20.04.1)
|
|
groovy |
Released
(418.181.07-0ubuntu0.20.10.1)
|
|
trusty |
Does not exist
|
|
upstream |
Needs triage
|
|
xenial |
Does not exist
|
|
nvidia-graphics-drivers-440-server Launchpad, Ubuntu, Debian |
bionic |
Ignored
(superseded by 450-server)
|
focal |
Ignored
(superseded by 450-server)
|
|
groovy |
Ignored
(end of life)
|
|
trusty |
Does not exist
|
|
upstream |
Needs triage
|
|
xenial |
Does not exist
|
|
nvidia-graphics-drivers-450 Launchpad, Ubuntu, Debian |
bionic |
Released
(450.102.04-0ubuntu0.18.04.1)
|
focal |
Released
(450.102.04-0ubuntu0.20.04.1)
|
|
groovy |
Released
(450.102.04-0ubuntu0.20.10.1)
|
|
trusty |
Does not exist
|
|
upstream |
Needs triage
|
|
xenial |
Does not exist
|
|
nvidia-graphics-drivers-450-server Launchpad, Ubuntu, Debian |
bionic |
Released
(450.102.04-0ubuntu0.18.04.1)
|
focal |
Released
(450.102.04-0ubuntu0.20.04.1)
|
|
groovy |
Released
(450.102.04-0ubuntu0.20.10.1)
|
|
trusty |
Does not exist
|
|
upstream |
Needs triage
|
|
xenial |
Does not exist
|
|
nvidia-graphics-drivers-455 Launchpad, Ubuntu, Debian |
bionic |
Ignored
(not available)
|
focal |
Ignored
(not available)
|
|
groovy |
Ignored
(end of life)
|
|
trusty |
Does not exist
|
|
upstream |
Ignored
|
|
xenial |
Does not exist
|
|
nvidia-graphics-drivers-460 Launchpad, Ubuntu, Debian |
bionic |
Released
(460.32.03-0ubuntu0.18.04.1)
|
focal |
Released
(460.32.03-0ubuntu0.20.04.1)
|
|
groovy |
Released
(460.32.03-0ubuntu0.20.10.1)
|
|
trusty |
Does not exist
|
|
upstream |
Needs triage
|
|
xenial |
Does not exist
|
Severity score breakdown
Parameter | Value |
---|---|
Base score | 7.1 |
Attack vector | Local |
Attack complexity | Low |
Privileges required | Low |
User interaction | None |
Scope | Unchanged |
Confidentiality | High |
Integrity impact | None |
Availability impact | High |
Vector | CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H |