CVE-2022-28192

NameCVE-2022-28192
DescriptionNVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager (nvidia.ko), where it may lead to a use-after-free, which in turn may cause denial of service. This attack is complex to carry out because the attacker needs to have control over freeing some host side resources out of sequence, which requires elevated privileges.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)
Debian Bugs1011140, 1011143, 1011144, 1011145, 1011146, 1011147

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
nvidia-graphics-drivers (PTS)jessie/non-free340.106-1vulnerable
stretch/non-free (security), stretch/non-free (lts), stretch/non-free390.144-1~deb9u1vulnerable
buster/non-free418.226.00-3vulnerable
bullseye/non-free470.256.02-2fixed
bookworm/non-free-firmware535.183.01-1~deb12u1fixed
sid/non-free-firmware, trixie/non-free-firmware535.216.01-1fixed
nvidia-graphics-drivers-tesla-418 (PTS)bullseye/non-free418.226.00-6~deb11u2vulnerable
sid/non-free418.226.00-16vulnerable
nvidia-graphics-drivers-tesla-450 (PTS)bullseye/non-free450.248.02-7~deb11u1fixed
sid/non-free450.248.02-8fixed
nvidia-graphics-drivers-tesla-460 (PTS)bullseye/non-free460.106.00-17~deb11u1vulnerable
sid/non-free460.106.00-18vulnerable
nvidia-graphics-drivers-tesla-470 (PTS)bullseye/non-free470.256.02-1~deb11u2fixed
bookworm/non-free470.256.02-1~deb12u1fixed
trixie/non-free, sid/non-free470.256.02-4fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
nvidia-graphics-driverssourcejessie(unfixed)end-of-life
nvidia-graphics-driverssourcestretch(unfixed)end-of-life
nvidia-graphics-driverssourcebullseye470.129.06-5~deb11u1
nvidia-graphics-driverssource(unstable)470.129.06-11011140
nvidia-graphics-drivers-tesla-418source(unstable)(unfixed)1011143
nvidia-graphics-drivers-tesla-450sourcebullseye450.191.01-1~deb11u1
nvidia-graphics-drivers-tesla-450source(unstable)450.191.01-11011144
nvidia-graphics-drivers-tesla-460source(unstable)(unfixed)1011145
nvidia-graphics-drivers-tesla-470source(unstable)470.129.06-11011146
nvidia-graphics-drivers-tesla-510sourceexperimental510.73.08-1
nvidia-graphics-drivers-tesla-510source(unstable)510.73.08-21011147

Notes

[buster] - nvidia-graphics-drivers <ignored> (Non-free not supported)
[bullseye] - nvidia-graphics-drivers-tesla-418 <ignored> (Non-free not supported, driver is EOLed and updates impossible)
[bullseye] - nvidia-graphics-drivers-tesla-460 <no-dsa> (Non-free not supported)
[bullseye] - nvidia-graphics-drivers-tesla-470 <no-dsa> (Non-free not supported)
https://nvidia.custhelp.com/app/answers/detail/a_id/5353
Search for package or bug name: Reporting problems