USN-2438-1
- Source
- https://ubuntu.com/security/notices/USN-2438-1
- Import Source
- https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-2438-1.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/USN-2438-1
- Upstream
- Related
- Published
- 2014-12-10T18:35:36.157169Z
- Modified
- 2025-10-13T04:34:05Z
- Summary
- nvidia-graphics-drivers-304, nvidia-graphics-drivers-304-updates, nvidia-graphics-drivers-331, nvidia-graphics-drivers-331-updates vulnerabilities
- Details
-
It was discovered that the NVIDIA graphics drivers incorrectly handled GLX indirect rendering support. An attacker able to connect to an X server, either locally or remotely, could use these issues to cause the X server to crash or execute arbitrary code resulting in possible privilege escalation.
- References
Affected packages
Ubuntu:14.04:LTS
nvidia-graphics-drivers-304
Package
- Name
- nvidia-graphics-drivers-304
- Purl
- pkg:deb/ubuntu/nvidia-graphics-drivers-304@304.125-0ubuntu0.0.1?arch=source&distro=trusty
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed304.125-0ubuntu0.0.1
Affected versions
304.*
304.88-0ubuntu8
304.88-0ubuntu9
304.88-0ubuntu10
304.88-0ubuntu11
304.116-0ubuntu1
304.116-0ubuntu2
304.117-0ubuntu1
Ecosystem specific
{
"binaries": [
{
"binary_version": "304.125-0ubuntu0.0.1",
"binary_name": "libcuda1-304"
},
{
"binary_version": "304.125-0ubuntu0.0.1",
"binary_name": "nvidia-304"
},
{
"binary_version": "304.125-0ubuntu0.0.1",
"binary_name": "nvidia-304-dev"
},
{
"binary_version": "304.125-0ubuntu0.0.1",
"binary_name": "nvidia-current"
},
{
"binary_version": "304.125-0ubuntu0.0.1",
"binary_name": "nvidia-current-dev"
},
{
"binary_version": "304.125-0ubuntu0.0.1",
"binary_name": "nvidia-libopencl1-304"
},
{
"binary_version": "304.125-0ubuntu0.0.1",
"binary_name": "nvidia-opencl-icd-304"
}
],
"availability": "No subscription required"
}Database specific
cves_map
{
"ecosystem": "Ubuntu:14.04:LTS",
"cves": [
{
"severity": [
{
"type": "Ubuntu",
"score": "medium"
}
],
"id": "CVE-2014-8091"
},
{
"severity": [
{
"type": "Ubuntu",
"score": "medium"
}
],
"id": "CVE-2014-8098"
},
{
"severity": [
{
"type": "Ubuntu",
"score": "medium"
}
],
"id": "CVE-2014-8298"
}
]
}
nvidia-graphics-drivers-304-updates
Package
- Name
- nvidia-graphics-drivers-304-updates
- Purl
- pkg:deb/ubuntu/nvidia-graphics-drivers-304-updates@304.125-0ubuntu0.0.1?arch=source&distro=trusty
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed304.125-0ubuntu0.0.1
Affected versions
304.*
304.108-0ubuntu1
304.108-0ubuntu2
304.108-0ubuntu3
304.108-0ubuntu4
304.116-0ubuntu1
304.116-0ubuntu2
304.117-0ubuntu1
Ecosystem specific
{
"binaries": [
{
"binary_version": "304.125-0ubuntu0.0.1",
"binary_name": "libcuda1-304-updates"
},
{
"binary_version": "304.125-0ubuntu0.0.1",
"binary_name": "nvidia-304-updates"
},
{
"binary_version": "304.125-0ubuntu0.0.1",
"binary_name": "nvidia-304-updates-dev"
},
{
"binary_version": "304.125-0ubuntu0.0.1",
"binary_name": "nvidia-current-updates"
},
{
"binary_version": "304.125-0ubuntu0.0.1",
"binary_name": "nvidia-current-updates-dev"
},
{
"binary_version": "304.125-0ubuntu0.0.1",
"binary_name": "nvidia-experimental-304"
},
{
"binary_version": "304.125-0ubuntu0.0.1",
"binary_name": "nvidia-experimental-304-dev"
},
{
"binary_version": "304.125-0ubuntu0.0.1",
"binary_name": "nvidia-libopencl1-304-updates"
},
{
"binary_version": "304.125-0ubuntu0.0.1",
"binary_name": "nvidia-opencl-icd-304-updates"
}
],
"availability": "No subscription required"
}Database specific
cves_map
{
"ecosystem": "Ubuntu:14.04:LTS",
"cves": [
{
"severity": [
{
"type": "Ubuntu",
"score": "medium"
}
],
"id": "CVE-2014-8091"
},
{
"severity": [
{
"type": "Ubuntu",
"score": "medium"
}
],
"id": "CVE-2014-8098"
},
{
"severity": [
{
"type": "Ubuntu",
"score": "medium"
}
],
"id": "CVE-2014-8298"
}
]
}
nvidia-graphics-drivers-331
Package
- Name
- nvidia-graphics-drivers-331
- Purl
- pkg:deb/ubuntu/nvidia-graphics-drivers-331@331.113-0ubuntu0.0.4?arch=source&distro=trusty
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed331.113-0ubuntu0.0.4
Affected versions
331.*
331.20-0ubuntu1
331.20-0ubuntu2
331.20-0ubuntu3
331.20-0ubuntu4
331.20-0ubuntu5
331.20-0ubuntu6
331.20-0ubuntu7
331.20-0ubuntu8
331.20-0ubuntu9
331.38-0ubuntu1
331.38-0ubuntu2
331.38-0ubuntu3
331.38-0ubuntu4
331.38-0ubuntu5
331.38-0ubuntu6
331.38-0ubuntu7
331.38-0ubuntu7.1
Ecosystem specific
{
"binaries": [
{
"binary_version": "331.113-0ubuntu0.0.4",
"binary_name": "libcuda1-331"
},
{
"binary_version": "331.113-0ubuntu0.0.4",
"binary_name": "nvidia-319"
},
{
"binary_version": "331.113-0ubuntu0.0.4",
"binary_name": "nvidia-319-dev"
},
{
"binary_version": "331.113-0ubuntu0.0.4",
"binary_name": "nvidia-331"
},
{
"binary_version": "331.113-0ubuntu0.0.4",
"binary_name": "nvidia-331-dev"
},
{
"binary_version": "331.113-0ubuntu0.0.4",
"binary_name": "nvidia-331-uvm"
},
{
"binary_version": "331.113-0ubuntu0.0.4",
"binary_name": "nvidia-libopencl1-331"
},
{
"binary_version": "331.113-0ubuntu0.0.4",
"binary_name": "nvidia-opencl-icd-331"
}
],
"availability": "No subscription required"
}Database specific
cves_map
{
"ecosystem": "Ubuntu:14.04:LTS",
"cves": [
{
"severity": [
{
"type": "Ubuntu",
"score": "medium"
}
],
"id": "CVE-2014-8091"
},
{
"severity": [
{
"type": "Ubuntu",
"score": "medium"
}
],
"id": "CVE-2014-8098"
},
{
"severity": [
{
"type": "Ubuntu",
"score": "medium"
}
],
"id": "CVE-2014-8298"
}
]
}
nvidia-graphics-drivers-331-updates
Package
- Name
- nvidia-graphics-drivers-331-updates
- Purl
- pkg:deb/ubuntu/nvidia-graphics-drivers-331-updates@331.113-0ubuntu0.0.4?arch=source&distro=trusty
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed331.113-0ubuntu0.0.4
Affected versions
331.*
331.20-0ubuntu1
331.20-0ubuntu2
331.20-0ubuntu3
331.20-0ubuntu4
331.20-0ubuntu5
331.20-0ubuntu6
331.20-0ubuntu7
331.20-0ubuntu8
331.20-0ubuntu9
331.38-0ubuntu1
331.38-0ubuntu2
331.38-0ubuntu3
331.38-0ubuntu4
331.38-0ubuntu5
331.38-0ubuntu6
331.38-0ubuntu7
331.38-0ubuntu7.1
Ecosystem specific
{
"binaries": [
{
"binary_version": "331.113-0ubuntu0.0.4",
"binary_name": "libcuda1-331-updates"
},
{
"binary_version": "331.113-0ubuntu0.0.4",
"binary_name": "nvidia-319-updates"
},
{
"binary_version": "331.113-0ubuntu0.0.4",
"binary_name": "nvidia-319-updates-dev"
},
{
"binary_version": "331.113-0ubuntu0.0.4",
"binary_name": "nvidia-331-updates"
},
{
"binary_version": "331.113-0ubuntu0.0.4",
"binary_name": "nvidia-331-updates-dev"
},
{
"binary_version": "331.113-0ubuntu0.0.4",
"binary_name": "nvidia-331-updates-uvm"
},
{
"binary_version": "331.113-0ubuntu0.0.4",
"binary_name": "nvidia-libopencl1-331-updates"
},
{
"binary_version": "331.113-0ubuntu0.0.4",
"binary_name": "nvidia-opencl-icd-331-updates"
}
],
"availability": "No subscription required"
}Database specific
cves_map
{
"ecosystem": "Ubuntu:14.04:LTS",
"cves": [
{
"severity": [
{
"type": "Ubuntu",
"score": "medium"
}
],
"id": "CVE-2014-8091"
},
{
"severity": [
{
"type": "Ubuntu",
"score": "medium"
}
],
"id": "CVE-2014-8098"
},
{
"severity": [
{
"type": "Ubuntu",
"score": "medium"
}
],
"id": "CVE-2014-8298"
}
]
}