CVE-2022-34674
Summary
| CVE | CVE-2022-34674 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2022-12-30 23:15:00 UTC |
| Updated | 2023-10-15 02:12:00 UTC |
| Description | NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel mode layer handler, where a helper function maps more physical pages than were requested, which may lead to undefined behavior or an information leak. |
Risk And Classification
Problem Types: NVD-CWE-noinfo
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Operating System | Citrix | Hypervisor | - | All | All | All |
| Operating System | Debian | Debian Linux | 10.0 | All | All | All |
| Operating System | Linux | Linux Kernel | - | All | All | All |
| Application | Nvidia | Cloud Gaming | All | All | All | All |
| Application | Nvidia | Geforce | - | All | All | All |
| Application | Nvidia | Gpu Display Driver | All | All | All | All |
| Application | Nvidia | Nvs | - | All | All | All |
| Application | Nvidia | Quadro | - | All | All | All |
| Application | Nvidia | Rtx | - | All | All | All |
| Application | Nvidia | Tesla | - | All | All | All |
| Application | Nvidia | Virtual Gpu | All | All | All | All |
| Operating System | Redhat | Enterprise Linux Kernel-based Virtual Machine | - | All | All | All |
| Operating System | Vmware | Vsphere | - | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| NVIDIA Drivers: Multiple Vulnerabilities (GLSA 202310-02) — Gentoo security | GENTOO | security.gentoo.org | |
| Security Bulletin: NVIDIA GPU Display Driver - November 2022 | NVIDIA | MISC | nvidia.custhelp.com | |
| [SECURITY] [DLA 3418-1] nvidia-graphics-drivers-legacy-390xx security update | MLIST | lists.debian.org | |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
Legacy QID Mappings
- 181264 Debian Security Update for nvidia-graphics-drivers-tesla-460 (CVE-2022-34674)
- 181778 Debian Security Update for nvidia-graphics-drivers-legacy-390xx (DLA 3418-1)
- 296105 Oracle Solaris 11.4 Support Repository Update (SRU) 63.157.1 Missing (CPUOCT2023)
- 6140226 AWS Bottlerocket Security Update for kmod-nvidia (GHSA-vj8w-2h4q-jcg8)
- 710762 Gentoo Linux NVIDIA Drivers Multiple Vulnerabilities (GLSA 202310-02)