MGASA-2012-0131
| Date: | June 27th, 2012 |
| Affected releases: | 1 |
Description:
A security vulnerability has been found in the NVIDIA proprietary
driver which allows any process to reconfigure the GPU and gain access
to arbitrary system memory (CVE-2012-0946). This vulnerability has been
classified as high risk by NVIDIA.
This update for nvidia173 addresses the issue. Additionally, this legacy
driver is updated to the version 173.14.31, which fixes a bug that caused
freezes and crashes when resizing windows in KDE 4 with desktop effects
enabled.
Updated Packages:
dkms-nvidia173-173.14.31-1.mga1
nvidia173-cuda-173.14.31-1.mga1
nvidia173-debug-173.14.31-1.mga1
nvidia173-devel-173.14.31-1.mga1
nvidia173-doc-html-173.14.31-1.mga1
x11-driver-video-nvidia173-173.14.31-1.mga1
References:
http://nvidia.custhelp.com/app/answers/detail/a_id/3109
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0946
https://bugs.mageia.org/show_bug.cgi?id=5354
