CVE-2022-34666 An attacker with local user access can cause a null-pointer dereference, which may lead to a denial of service.

CVE-2022-34666 An attacker with local user access can cause a null-pointer dereference, which may lead to a denial of service.

This issue is documented in the CVE database with CVE-2018-5407 and is rated as ‘critical’. This update also fixes a flashing issue with the nvidia-settings application on Linux where the screen may flicker while setting the display via nvidia-settings. This update also fixes an issue with the X server on Linux where the X server may crash when starting a virtual console. Additionally, this update fixes an issue with the NVIDIA user-space driver on Linux where if a program using libnvidia-cfg (e.g. nvidia-settings) is run with elevated privileges, a local user can cause a denial of service by leveraging the ability to access elevated system functions. Users of the NVIDIA GPU on Windows are encouraged to update their software to mitigate these issues.

NVIDIA GPU Display Driver Upgrades and Fixes

As part of our ongoing commitment to provide the best possible experience for NVIDIA GPU users, we regularly update our drivers to fix newly identified issues. To download and install this package, please follow the instructions at the following link:

https://devguide.nvidia.com/content/display-driver-updates

NVIDIA GPU Driver Updates

NVIDIA GPU driver updates are recommended for users of NVIDIA GPUs on Linux.
Users should update their NVIDIA GPU driver to mitigate these issues.
This update also fixes a flashing issue with the nvidia-settings application on Linux where the screen may flicker while setting the display via nvidia-settings. This update also fixes an issue with the X server on Linux where the X server may crash when starting a virtual console. Additionally, this update fixes an issue with the NVIDIA user-space driver on Linux where if a program using libnvidia-cfg (e.g. nvidia-settings) is run with elevated privileges, a local user can cause a denial of service by leveraging the ability to access elevated system functions. Users of the NVIDIA GPU on Windows are encouraged to update their software to mitigate these issues

Potential Impact

An update to the NVIDIA user-space driver may cause some issues for certain programs that use libnvidia-cfg or the X server.
The update also addresses an issue with the nvidia-settings application on Linux where the screen may flicker while setting the display via nvidia-settings.

What is the latest version of nvidia-graphics-drivers?

The latest version of the nvidia-graphics-drivers is 384.59. The update also fixes an issue with the xserver on Linux where if a program using libnvidia-cfg (e.g. nvidia-settings) is run with elevated privileges, a local user can cause a denial of service by leveraging the ability to access elevated system functions.

References

Subscribe to CVE.news
Don’t miss out on the latest issues. Sign up now to get access to the library of members-only issues.
jamie@example.com
Subscribe