CVE-2023-31022

Summary

CVE	CVE-2023-31022
State	PUBLIC
Assigner	[email protected]
Source Priority	CVE Program / NVD first with legacy fallback
Published	2023-11-02 19:15:00 UTC
Updated	2023-11-13 19:19:00 UTC
Description	NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability in the kernel mode layer, where a NULL-pointer dereference may lead to denial of service.

Risk And Classification

Problem Types: CWE-476

NVD Known Affected Configurations (CPE 2.3)

Type	Vendor	Product	Version	Update	Edition	Language
Operating System	Canonical	Ubuntu Linux	-	All	All	All
Operating System	Citrix	Hypervisor	-	All	All	All
Operating System	Linux	Linux Kernel	-	All	All	All
Operating System	Linux-kvm	Kernel Virtual Machine	-	All	All	All
Application	Microsoft	Azure Stack Hci	-	All	All	All
Operating System	Microsoft	Windows	-	All	All	All
Application	Nvidia	Virtual Gpu	All	All	All	All
Operating System	Redhat	Enterprise Linux	-	All	All	All
Operating System	Vmware	Vsphere	-	All	All	All

References

Reference	Source	Link	Tags
Security Bulletin: NVIDIA GPU Display Driver - October 2023 \| NVIDIA	MISC	nvidia.custhelp.com
CVE Program record	CVE.ORG	www.cve.org	canonical
NVD vulnerability detail	NVD	nvd.nist.gov	canonical, analysis

No vendor comments have been submitted for this CVE.

Legacy QID Mappings

6140306 AWS Bottlerocket Security Update for kmod-nvidia (GHSA-rhwr-7vhh-4wvw)
755252 SUSE Enterprise Linux Security Update for kernel-firmware-nvidia-gspx-G06, nvidia-open-driver-G06-signed (SUSE-SU-2023:4427-1)
755259 SUSE Enterprise Linux Security Update for kernel-firmware-nvidia-gspx-G06, nvidia-open-driver-G06-signed (SUSE-SU-2023:4429-1)