Ubuntu update for NVIDIA graphics drivers



Risk Medium
Patch available YES
Number of vulnerabilities 2
CVE-ID CVE-2016-7382
CVE-2016-7389
CWE-ID CWE-264
CWE-20
Exploitation vector Local
Public exploit Public exploit code for vulnerability #1 is available.
Public exploit code for vulnerability #2 is available.
Vulnerable software
 Ubuntu
Operating systems & Components / Operating system

Vendor Canonical Ltd.

Security Bulletin

This security bulletin contains information about 2 vulnerabilities.

1) Privilege escalation

EUVDB-ID: #VU1107

Risk: Medium

CVSSv4.0: 7.1 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/U:Green]

CVE-ID: CVE-2016-7382

CWE-ID: CWE-264 - Permissions, Privileges, and Access Controls

Exploit availability: No

Description

The vulnerability allows a local user toobtain elevated privileges on the target system.
The weakness occurs in the kernel mode layer (nvidia.ko) handler and exists due to improper permissions control that lets a local attacker gain access to arbitrary physical memory, leading to an escalation of privileges.
Successful exploitation of the vulnerability results in privilege escalation.

Mitigation

Update the affected packages

Ubuntu 16.04 LTS:
nvidia-331 340.98-0ubuntu0.16.04.1
nvidia-current 304.132-0ubuntu0.16.04.2
nvidia-340-updates 340.98-0ubuntu0.16.04.1
nvidia-340 340.98-0ubuntu0.16.04.1
nvidia-331-updates 340.98-0ubuntu0.16.04.1
nvidia-361 367.57-0ubuntu0.16.04.1
nvidia-367 367.57-0ubuntu0.16.04.1
nvidia-304-updates 304.132-0ubuntu0.16.04.2
nvidia-304 304.132-0ubuntu0.16.04.2
Ubuntu 14.04 LTS:
nvidia-331 340.98-0ubuntu0.14.04.1
nvidia-current 304.132-0ubuntu0.14.04.2
nvidia-352 367.57-0ubuntu0.14.04.1
nvidia-340-updates 340.98-0ubuntu0.14.04.1
nvidia-340 340.98-0ubuntu0.14.04.1
nvidia-331-updates 340.98-0ubuntu0.14.04.1
nvidia-304 304.132-0ubuntu0.14.04.2
nvidia-367 367.57-0ubuntu0.14.04.1
nvidia-304-updates 304.132-0ubuntu0.14.04.2
nvidia-352-updates 367.57-0ubuntu0.14.04.1
Ubuntu 12.04 LTS:
nvidia-331 340.98-0ubuntu0.12.04.1
nvidia-current 304.132-0ubuntu0.12.04.1
nvidia-340-updates 340.98-0ubuntu0.12.04.1
nvidia-340 340.98-0ubuntu0.12.04.1
nvidia-331-updates 340.98-0ubuntu0.12.04.1
nvidia-304-updates 304.132-0ubuntu0.12.04.1
nvidia-304 304.132-0ubuntu0.12.04.1

Vulnerable software versions

Ubuntu: 12.04 - 16.04

CPE2.3 External links

https://www.ubuntu.com/usn/usn-3122-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability. However, proof of concept for this vulnerability is available.

2) Privilege escalation

EUVDB-ID: #VU1108

Risk: Medium

CVSSv4.0: 7.1 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/U:Green]

CVE-ID: CVE-2016-7389

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a local user toobtain elevated privileges on the target system.
The weakness occurs in the kernel mode layer (nvidia.ko) handler for mmap() and exists due to improper input validation. By sending a specially crafted file, a local attacker can gain access to arbitrary physical memory, leading to an escalation of privileges.
Successful exploitation of the vulnerability results in privilege escalation.

Mitigation

Update the affected packages

Ubuntu 16.04 LTS:
nvidia-331 340.98-0ubuntu0.16.04.1
nvidia-current 304.132-0ubuntu0.16.04.2
nvidia-340-updates 340.98-0ubuntu0.16.04.1
nvidia-340 340.98-0ubuntu0.16.04.1
nvidia-331-updates 340.98-0ubuntu0.16.04.1
nvidia-361 367.57-0ubuntu0.16.04.1
nvidia-367 367.57-0ubuntu0.16.04.1
nvidia-304-updates 304.132-0ubuntu0.16.04.2
nvidia-304 304.132-0ubuntu0.16.04.2
Ubuntu 14.04 LTS:
nvidia-331 340.98-0ubuntu0.14.04.1
nvidia-current 304.132-0ubuntu0.14.04.2
nvidia-352 367.57-0ubuntu0.14.04.1
nvidia-340-updates 340.98-0ubuntu0.14.04.1
nvidia-340 340.98-0ubuntu0.14.04.1
nvidia-331-updates 340.98-0ubuntu0.14.04.1
nvidia-304 304.132-0ubuntu0.14.04.2
nvidia-367 367.57-0ubuntu0.14.04.1
nvidia-304-updates 304.132-0ubuntu0.14.04.2
nvidia-352-updates 367.57-0ubuntu0.14.04.1
Ubuntu 12.04 LTS:
nvidia-331 340.98-0ubuntu0.12.04.1
nvidia-current 304.132-0ubuntu0.12.04.1
nvidia-340-updates 340.98-0ubuntu0.12.04.1
nvidia-340 340.98-0ubuntu0.12.04.1
nvidia-331-updates 340.98-0ubuntu0.12.04.1
nvidia-304-updates 304.132-0ubuntu0.12.04.1
nvidia-304 304.132-0ubuntu0.12.04.1

Vulnerable software versions

Ubuntu: 12.04 - 16.04

CPE2.3 External links

https://www.ubuntu.com/usn/usn-3122-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability. However, proof of concept for this vulnerability is available.



###SIDEBAR###