FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

nvidia-driver -- arbitrary root code execution vulnerability

Affected packages
1.0.8762 <= nvidia-driver < 1.0.8776

Details

VuXML ID a6d9da4a-5d5e-11db-8faf-000c6ec775d9
Discovery 2006-10-16
Entry 2006-10-16
Modified 2006-10-21

Rapid7 reports:

The NVIDIA Binary Graphics Driver for Linux is vulnerable to a buffer overflow that allows an attacker to run arbitrary code as root. This bug can be exploited both locally or remotely (via a remote X client or an X client which visits a malicious web page). A working proof-of-concept root exploit is included with this advisory.

The NVIDIA drivers for Solaris and FreeBSD are also likely to be vulnerable.

Disabling Render acceleration in the "nvidia" driver, via the "RenderAccel" X configuration option, can be used as a workaround for this issue.

References

CERT/CC Vulnerability Note 147252
CVE Name CVE-2006-5379
URL http://nvidia.custhelp.com/cgi-bin/nvidia.cfg/php/enduser/std_adp.php?p_faqid=1971
URL http://secunia.com/advisories/22419/
URL http://www.rapid7.com/advisories/R7-0025.jsp