Security Experts:

Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Vulnerabilities

NVIDIA Patches High Severity Flaws in Tegra Drivers

NVIDIA this week released security patches to address multiple vulnerabilities in the Tegra Linux Driver Package (L4T), including several flaws assessed with a “high” severity rating.

The most important of the bugs is CVE‑2018‑6269, a vulnerability residing in the Tegra kernel driver (the issue features a CVSS score of 8.8).

NVIDIA this week released security patches to address multiple vulnerabilities in the Tegra Linux Driver Package (L4T), including several flaws assessed with a “high” severity rating.

The most important of the bugs is CVE‑2018‑6269, a vulnerability residing in the Tegra kernel driver (the issue features a CVSS score of 8.8).

It affects the input/output control (IOCTL) handling for user mode requests and it could lead to information disclosure, denial-of-service (DoS), escalation of privileges, or code execution through a non-trusted pointer dereference.

The second most serious vulnerability, based on its CVSS score of 8.4, is CVE‑2017‑6278. Residing in the Tegra kernel’s CORE dynamic voltage and frequency scaling (DVFS) thermal driver, the vulnerability makes it possible to “read or write a buffer using an index or pointer that references a memory location after the end of the buffer, which may lead to a denial of service or escalation of privileges,” NVIDIA says.

A third severe flaw (CVE‑2018‑6267, CVSS score 8.4) was found in the Tegra OpenMax driver (libnvomx) and consists of a missing user metadata check that could allow invalid metadata to pass as valid, thus resulting in a DoS condition or escalation of privileges.

Another high risk bug addressed in this round of patches is CVE‑2018‑6271 (CVSS score 8.4). It also resides in the Tegra OpenMax driver and is created by invalid or erroneously validated input, which could affect the control flow or data flow of a program, leading to DoS or privilege escalation.

NVIDIA also addressed an important vulnerability in the Tegra kernel driver’s ARM System Memory Management Unit (SMMU), which could lead to denial of service (CVE‑2019‑5673), and another in the Tegra OpenMax driver, which could lead to denial of service or escalation of privileges (CVE‑2018‑6268).

Other vulnerabilities addressed this week may lead to information disclosure, denial of service or escalation of privileges. The updates should also mitigate side-channel attacks, specifically Variant 4 of the speculative execution methods known as Meltdown and Spectre.

The majority of these vulnerabilities require local access to the targeted system, but the attack complexity is low for most of them, NVIDIA reveals.

The vulnerabilities impact Jetson TX1 versions prior to R28.3 and Jetson TX2 versions prior to R28.3.

Related: NVIDIA Patches High Risk Vulnerabilities in GPU Display Drivers

Related: NVIDIA Patches Serious Flaw in GeForce Experience Software

Written By

Ionut Arghire is an international correspondent for SecurityWeek.

Click to comment

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Join this webinar to learn best practices that organizations can use to improve both their resilience to new threats and their response times to incidents.

Register

Join this live webinar as we explore the potential security threats that can arise when third parties are granted access to a sensitive data or systems.

Register

Expert Insights

Related Content

Vulnerabilities

Less than a week after announcing that it would suspended service indefinitely due to a conflict with an (at the time) unnamed security researcher...

Risk Management

The supply chain threat is directly linked to attack surface management, but the supply chain must be known and understood before it can be...

Vulnerabilities

Apple has released updates for macOS, iOS and Safari and they all include a WebKit patch for a zero-day vulnerability tracked as CVE-2023-23529.

Application Security

Drupal released updates that resolve four vulnerabilities in Drupal core and three plugins.

Vulnerabilities

Patch Tuesday: Microsoft warns vulnerability (CVE-2023-23397) could lead to exploitation before an email is viewed in the Preview Pane.

Cloud Security

VMware vRealize Log Insight vulnerability allows an unauthenticated attacker to take full control of a target system.

IoT Security

Lexmark warns of a remote code execution (RCE) vulnerability impacting over 120 printer models, for which PoC code has been published.

Application Security

A CSRF vulnerability in the source control management (SCM) service Kudu could be exploited to achieve remote code execution in multiple Azure services.