Recently, NVIDIA has been updating its Linux system drivers very frequently, and has successively released long-life branch version 310.44, short-life branch version 313.30, and traditional branch versions 304.88 and 173.14.37.
Recently, NVIDIA released the latest graphics card driver version 319.12. This version of the driver adds support for the GeForce GTX 650 Ti BOOST graphics card driver. It also fixes the problem in CVE-2013-0131, that is, in NoScanout mode, NVIDIA Graphics card driver ARGB cursor buffer leak problem.
NVIDIA also separately describes this issue in the knowledge base. In X Windows systems in NoScanout mode, if the X client installs an ARGB cursor larger than the default setting (64*64 or 256*256, the specific size depends on the driver version), The driver will overflow, which may cause a denial of service or may be used to execute malicious code. Because the X server runs as setuid root in many configurations, an attacker could exploit the vulnerability to gain ROOT privileges.
This vulnerability has existed since driver version 195.22, which has fixed the problem. NVIDIA recommends updating the driver or disabling NoScanout mode.
Installation instructions:
1. Many Linux distributions provide their own NVIDIA Linux graphics driver compressed packages in their native compressed package management format. This allows for better interaction with other architectures of these distributions, allowing users to choose freely.
2. SuSE users should read the SuSE NVIDIA Installer Guide before downloading the driver.
it works
it works
it works