CVE-2015-3625

NameCVE-2015-3625
DescriptionThe NVIDIA GPU driver for FreeBSD R352 before 352.09, 346 before 346.72, R349 before 349.16, R343 before 343.36, R340 before 340.76, R337 before 337.25, R334 before 334.21, R331 before 331.113, and R304 before 304.125 allows local users with certain permissions to read or write arbitrary kernel memory via unspecified vectors that trigger an untrusted pointer dereference.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
nvidia-graphics-drivers (PTS)jessie/non-free340.106-1fixed
stretch/non-free (security), stretch/non-free (lts), stretch/non-free390.144-1~deb9u1fixed
buster/non-free418.226.00-3fixed
bullseye/non-free470.256.02-2fixed
bookworm/non-free-firmware535.183.01-1~deb12u1fixed
trixie/non-free-firmware, sid/non-free-firmware535.216.03-1fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
nvidia-graphics-driverssource(unstable)(not affected)

Notes

- nvidia-graphics-drivers <not-affected> (FreeBSD drivers in separate blobs/source)

Search for package or bug name: Reporting problems