CVE-2007-3532

NameCVE-2007-3532
DescriptionNVIDIA drivers (nvidia-drivers) before 1.0.7185, 1.0.9639, and 100.14.11, as used in Gentoo Linux and possibly other distributions, creates /dev/nvidia* device files with insecure permissions, which allows local users to modify video card settings, cause a denial of service (crash or physical video card damage), and obtain sensitive information.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, bugtraq, EDB, Metasploit, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, Mageia, GitHub code/issues, web search, more)
NVD severityhigh
Debian Bugs434398

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
nvidia-kernel-commonsource(unstable)20051028+1-0.1low434398

Notes

[sarge] - nvidia-kernel-common <no-dsa> (Contrib and non-free not supported)
[etch] - nvidia-kernel-common <no-dsa> (Contrib and non-free not supported)

Search for package or bug name: Reporting problems