Name | CVE-2015-3625 |
Description | The NVIDIA GPU driver for FreeBSD R352 before 352.09, 346 before 346.72, R349 before 349.16, R343 before 343.36, R340 before 340.76, R337 before 337.25, R334 before 334.21, R331 before 331.113, and R304 before 304.125 allows local users with certain permissions to read or write arbitrary kernel memory via unspecified vectors that trigger an untrusted pointer dereference. |
Source | CVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more) |
The table below lists information on source packages.
Source Package | Release | Version | Status |
---|---|---|---|
nvidia-graphics-drivers (PTS) | jessie/non-free | 340.106-1 | fixed |
stretch/non-free (security), stretch/non-free (lts), stretch/non-free | 390.144-1~deb9u1 | fixed | |
buster/non-free | 418.226.00-3 | fixed | |
bullseye/non-free | 470.256.02-2 | fixed | |
bookworm/non-free-firmware | 535.183.01-1~deb12u1 | fixed | |
sid/non-free-firmware, trixie/non-free-firmware | 535.216.01-1 | fixed |
The information below is based on the following data on fixed versions.
Package | Type | Release | Fixed Version | Urgency | Origin | Debian Bugs |
---|---|---|---|---|---|---|
nvidia-graphics-drivers | source | (unstable) | (not affected) |
- nvidia-graphics-drivers <not-affected> (FreeBSD drivers in separate blobs/source)