oss-sec: Re: CVE Request: NVidia Linux driver

[Marc Deslauriers <marc.deslauriers () canonical com>]

Hi,

Could a CVE please get assigned to the following issue...

Thanks!

Marc.



On Wed, 2012-08-01 at 11:00 -0600, Kurt Seifried wrote:
> On 08/01/2012 06:58 AM, Marc Deslauriers wrote:
> > Hello,
> >
> > Could a CVE please be assigned to the following issue:
> >
> > The binary NVidia Linux driver allows local users to access
> > arbitrary memory locations by leveraging GPU device-node read/write
> > privileges, and escalate privileges to root. Possibly an incomplete
> > fix for CVE-2012-0946.
> >
> > See:
> >
> > http://seclists.org/fulldisclosure/2012/Aug/4
> >
> > Thanks,
> >
> > Marc.
> I do Open Source CVE assignments only, the Nvidia driver is binary
> only and closed source. You'll need to go to Mitre to get a CVE for
> this: cve-assign () mitre org (they handle the closed source stuff).