MGASA-2021-0026

See a problem?
Please try reporting it to the source first.

Source

https://advisories.mageia.org/MGASA-2021-0026.html

Import Source

https://advisories.mageia.org/MGASA-2021-0026.json

JSON Data

https://api.test.osv.dev/v1/vulns/MGASA-2021-0026

Related

Published

2021-01-14T15:13:25Z

Modified

2026-03-25T17:59:14.134194Z

Summary

Updated nvidia390 packages fix security vulnerabilities

Details

NVIDIA GPU Display Driver Linux contains a vulnerability in the kernel mode layer (nvidia.ko) IOCTL in which user-mode clients can access legacy privileged APIs, which may lead to denial of service, escalation of privileges, and information disclosure (CVE‑2021‑1052).

NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel mode layer (nvidia.ko) IOCTL in which improper validation of a user pointer may lead to denial of service (CVE‑2021‑1053).

NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel mode layer (nvidia.ko) in which it does not completely honor operating system file system permissions to provide GPU device-level isolation, which may lead to denial of service or information disclosure (CVE‑2021‑1056).

References

Credits

- Mageia - COORDINATOR
- - https://wiki.mageia.org/en/Packages_Security_Team

Affected packages

Mageia:7 / nvidia390

Package

Name: nvidia390
Purl: pkg:rpm/mageia/nvidia390?arch=source&distro=mageia-7

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

390.141-1.mga7.nonfree

Ecosystem specific

{
    "section": "nonfree"
}

Database specific

source

"https://advisories.mageia.org/MGASA-2021-0026.json"