NVIDIA has released an update for its GPU Display Driver to address 29 vulnerabilities which could be exploited to achieve code execution, denial of service, escalation of privileges, information disclosure, or data tampering. The two most serious issues, both of which affect NVIDIA GPU Display Driver for Windows, are “a vulnerability in the user mode layer, where an unprivileged regular user can access or modify system files or other files that are critical to the application … [and] a vulnerability in the user mode layer, where an unprivileged regular user can cause an out-of-bounds write.”
Note
- The vulnerabilities are on both Linux and Windows systems, so you need to deploy the update to both platforms. The Linux updates address weaknesses in the kernel mode layer of the driver which could be leveraged for DOS, code execution, data tampering or information disclosure.
Read more in
- Security Bulletin: NVIDIA GPU Display Driver – November 2022
- Nvidia Patches Many Vulnerabilities in Windows, Linux Display Drivers
- Nvidia GPU Driver Bugs Threaten Device Takeover & More
- NVIDIA releases GPU driver update to fix 29 security flaws
Alex Lim
Alex Lim is a certified IT Technical Support Architect with over 15 years of experience in designing, implementing, and troubleshooting complex IT systems and networks. He has worked for leading IT companies, such as Microsoft, IBM, and Cisco, providing technical support and solutions to clients across various industries and sectors. Alex has a bachelor’s degree in computer science from the National University of Singapore and a master’s degree in information security from the Massachusetts Institute of Technology. He is also the author of several best-selling books on IT technical support, such as The IT Technical Support Handbook and Troubleshooting IT Systems and Networks. Alex lives in Bandar, Johore, Malaysia with his wife and two chilrdren. You can reach him at [email protected] or follow him on Website | Twitter | Facebook
