Ubuntu update for NVIDIA graphics drivers
| Risk | Low |
| Patch available | YES |
| Number of vulnerabilities | 3 |
| CVE-ID | CVE-2017-0350 CVE-2017-0351 CVE-2017-0352 |
| CWE-ID | CWE-476 CWE-284 |
| Exploitation vector | Local |
| Public exploit |
Public exploit code for vulnerability #1 is available. Public exploit code for vulnerability #2 is available. |
| Vulnerable software |
Ubuntu Operating systems & Components / Operating system |
| Vendor | Canonical Ltd. |
Security Bulletin
This security bulletin contains information about 3 vulnerabilities.
1) Null pointer dereference
EUVDB-ID: #VU6772
Risk: Low
CVSSv4.0: 7.1 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/U:Clear]
CVE-ID: CVE-2017-0350
CWE-ID:
CWE-476 - NULL Pointer Dereference
Exploit availability: No
DescriptionThe vulnerability allows a local attacker to cause DoS condition or gain elevated privileges on the target system.
The weakness exists in the kernel mode layer handler due to improper validation of a value passed from a user to the driver. A local attacker can provide a specially crafted value that is used in an offset calculation, trigger NULL pointer dereference and cause denial of service or potentially escalate privileges.
Successful exploitation of the vulnerability may result in full access to the system.
- Ubuntu 17.04:
- nvidia-367 375.66-0ubuntu0.17.04.1
- nvidia-375 375.66-0ubuntu0.17.04.1
- Ubuntu 16.10:
- nvidia-367 375.66-0ubuntu0.16.10.1
- nvidia-375 375.66-0ubuntu0.16.10.1
- Ubuntu 16.04 LTS:
- nvidia-367 375.66-0ubuntu0.16.04.1
- nvidia-375 375.66-0ubuntu0.16.04.1
- Ubuntu 14.04 LTS:
- nvidia-367 375.66-0ubuntu0.14.04.1
- nvidia-375 375.66-0ubuntu0.14.04.1
Ubuntu: 14.04 - 17.04
CPE2.3- cpe:2.3:o:canonical:ubuntu:14.04:*:*:*:*:*:*:*
- cpe:2.3:o:canonical:ubuntu:16.04:*:*:*:*:*:*:*
- cpe:2.3:o:canonical:ubuntu:16.10:*:*:*:*:*:*:*
- cpe:2.3:o:canonical:ubuntu:17.04:*:*:*:*:*:*:*
https://www.ubuntu.com/usn/usn-3305-1/
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability. However, proof of concept for this vulnerability is available.
2) Null pointer dereference
EUVDB-ID: #VU6773
Risk: Low
CVSSv4.0: 7.1 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/U:Clear]
CVE-ID: CVE-2017-0351
CWE-ID:
CWE-476 - NULL Pointer Dereference
Exploit availability: No
DescriptionThe vulnerability allows a local attacker to cause DoS condition or gain elevated privileges on the target system.
The weakness exists in the kernel mode layer handler due to improper validation of user supplied data. A local attacker can provide a specially crafted input, trigger NULL pointer dereference and cause denial of service or potentially escalate privileges.
Successful exploitation of the vulnerability may result in full access to the system.
- Ubuntu 17.04:
- nvidia-367 375.66-0ubuntu0.17.04.1
- nvidia-375 375.66-0ubuntu0.17.04.1
- Ubuntu 16.10:
- nvidia-367 375.66-0ubuntu0.16.10.1
- nvidia-375 375.66-0ubuntu0.16.10.1
- Ubuntu 16.04 LTS:
- nvidia-367 375.66-0ubuntu0.16.04.1
- nvidia-375 375.66-0ubuntu0.16.04.1
- Ubuntu 14.04 LTS:
- nvidia-367 375.66-0ubuntu0.14.04.1
- nvidia-375 375.66-0ubuntu0.14.04.1
Ubuntu: 14.04 - 17.04
CPE2.3- cpe:2.3:o:canonical:ubuntu:14.04:*:*:*:*:*:*:*
- cpe:2.3:o:canonical:ubuntu:16.04:*:*:*:*:*:*:*
- cpe:2.3:o:canonical:ubuntu:16.10:*:*:*:*:*:*:*
- cpe:2.3:o:canonical:ubuntu:17.04:*:*:*:*:*:*:*
https://www.ubuntu.com/usn/usn-3305-1/
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability. However, proof of concept for this vulnerability is available.
3) Privilege escalation
EUVDB-ID: #VU6774
Risk: Low
CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2017-0352
CWE-ID:
CWE-284 - Improper Access Control
Exploit availability: No
DescriptionThe vulnerability allows a local attacker to gain elevated privileges on the target system.
The weakness exists in the GPU firmware due improper access control. A local attacker can run CPU software, gain access to sensitive GPU control registers and gain root privileges.
Successful exploitation of the vulnerability may result in full access to the system.
- Ubuntu 17.04:
- nvidia-367 375.66-0ubuntu0.17.04.1
- nvidia-375 375.66-0ubuntu0.17.04.1
- Ubuntu 16.10:
- nvidia-367 375.66-0ubuntu0.16.10.1
- nvidia-375 375.66-0ubuntu0.16.10.1
- Ubuntu 16.04 LTS:
- nvidia-367 375.66-0ubuntu0.16.04.1
- nvidia-375 375.66-0ubuntu0.16.04.1
- Ubuntu 14.04 LTS:
- nvidia-367 375.66-0ubuntu0.14.04.1
- nvidia-375 375.66-0ubuntu0.14.04.1
Ubuntu: 14.04 - 17.04
CPE2.3- cpe:2.3:o:canonical:ubuntu:14.04:*:*:*:*:*:*:*
- cpe:2.3:o:canonical:ubuntu:16.04:*:*:*:*:*:*:*
- cpe:2.3:o:canonical:ubuntu:16.10:*:*:*:*:*:*:*
- cpe:2.3:o:canonical:ubuntu:17.04:*:*:*:*:*:*:*
https://www.ubuntu.com/usn/usn-3305-1/
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
