NVIDIA GPU Display Driver contains a vulnerability in the DirectX and OpenGL Usermode drivers where a specially crafted pixel shader can cause infinite recursion leading to denial of service.
Weakness
The product contains an iteration or loop with an exit condition that cannot be reached, i.e., an infinite loop.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Gpu_driver | Nvidia | - (including) | - (including) |
| Nvidia-graphics-drivers-173 | Ubuntu | trusty | * |
| Nvidia-graphics-drivers-304 | Ubuntu | artful | * |
| Nvidia-graphics-drivers-304 | Ubuntu | esm-infra/xenial | * |
| Nvidia-graphics-drivers-304 | Ubuntu | trusty | * |
| Nvidia-graphics-drivers-304 | Ubuntu | xenial | * |
| Nvidia-graphics-drivers-340 | Ubuntu | artful | * |
| Nvidia-graphics-drivers-340 | Ubuntu | bionic | * |
| Nvidia-graphics-drivers-340 | Ubuntu | devel | * |
| Nvidia-graphics-drivers-340 | Ubuntu | esm-infra/bionic | * |
| Nvidia-graphics-drivers-340 | Ubuntu | esm-infra/xenial | * |
| Nvidia-graphics-drivers-340 | Ubuntu | trusty | * |
| Nvidia-graphics-drivers-340 | Ubuntu | xenial | * |
| Nvidia-graphics-drivers-384 | Ubuntu | artful | * |
| Nvidia-graphics-drivers-384 | Ubuntu | esm-apps/xenial | * |
| Nvidia-graphics-drivers-384 | Ubuntu | trusty | * |
| Nvidia-graphics-drivers-384 | Ubuntu | upstream | * |
| Nvidia-graphics-drivers-384 | Ubuntu | xenial | * |
| Nvidia-graphics-drivers-390 | Ubuntu | upstream | * |
References
- http://nvidia.custhelp.com/app/answers/detail/a_id/4649
- https://usn.ubuntu.com/3662-1/
- https://www.talosintelligence.com/vulnerability_reports/TALOS-2018-0522
- http://nvidia.custhelp.com/app/answers/detail/a_id/4649
- https://usn.ubuntu.com/3662-1/
- https://www.talosintelligence.com/vulnerability_reports/TALOS-2018-0522