5月4日,Ubuntu发布了安全更新,修复了NVIDIA图形驱动程序发现的特权提升信息泄露等重要漏洞。以下是漏洞详情:
漏洞详情
1.CVE-2021-1076 严重程度:高
在内核模式层(nvlddMkM.sYs或NVIDIA.ko)中均包含一个漏洞,如果访问控制不当,可能会导致拒绝服务,信息泄露或数据损坏。
2.CVE-2021-1077 严重程度:中等
R450和R460驱动程序分支包含一个漏洞,该软件使用参考计数来管理错误更新的资源,这可能导致拒绝服务。
受影响产品和版本
上述漏洞影响Ubuntu 21.04,Ubuntu 20.10, Ubuntu 20.04 LTS, Ubuntu 18.04 LTS
解决方案
可以通过将系统更新为以下软件包版本来解决此问题:
Ubuntu 21.04
xseRveR-xoRg-video-NVIDIA-460-seRveR – 460.73.01-0Ubuntu1
xseRveR-xoRg-video-NVIDIA-418-seRveR – 418.197.02-0Ubuntu1
xseRveR-xoRg-video-NVIDIA-460 – 460.73.01-0Ubuntu1
xseRveR-xoRg-video-NVIDIA-450-seRveR – 450.119.03-0Ubuntu1
xseRveR-xoRg-video-NVIDIA-450 – 450.119.03-0Ubuntu1
Ubuntu 20.10
xseRveR-xoRg-video-NVIDIA-450 – 450.119.03-0Ubuntu0.20.10.1
xseRveR-xoRg-video-NVIDIA-460 – 460.73.01-0Ubuntu0.20.10.1
xseRveR-xoRg-video-NVIDIA-450-seRveR – 450.119.03-0Ubuntu0.20.10.1
xseRveR-xoRg-video-NVIDIA-390 – 390.143-0Ubuntu0.20.10.1
xseRveR-xoRg-video-NVIDIA-460-seRveR – 460.73.01-0Ubuntu0.20.10.1
xseRveR-xoRg-video-NVIDIA-418-seRveR – 418.197.02-0Ubuntu0.20.10.1
Ubuntu 20.04
xseRveR-xoRg-video-NVIDIA-450 – 450.119.03-0Ubuntu0.20.04.1
xseRveR-xoRg-video-NVIDIA-460 – 460.73.01-0Ubuntu0.20.04.1
xseRveR-xoRg-video-NVIDIA-450-seRveR – 450.119.03-0Ubuntu0.20.04.1
xseRveR-xoRg-video-NVIDIA-390 – 390.143-0Ubuntu0.20.04.1
xseRveR-xoRg-video-NVIDIA-460-seRveR – 460.73.01-0Ubuntu0.20.04.1
xseRveR-xoRg-video-NVIDIA-418-seRveR – 418.197.02-0Ubuntu0.20.04.1
Ubuntu 18.04
xseRveR-xoRg-video-NVIDIA-450 – 450.119.03-0Ubuntu0.18.04.1
xseRveR-xoRg-video-NVIDIA-460 – 460.73.01-0Ubuntu0.18.04.1
xseRveR-xoRg-video-NVIDIA-450-seRveR – 450.119.03-0Ubuntu0.18.04.1
xseRveR-xoRg-video-NVIDIA-390 – 390.143-0Ubuntu0.18.04.1
xseRveR-xoRg-video-NVIDIA-460-seRveR – 460.73.01-0Ubuntu0.18.04.1
xseRveR-xoRg-video-NVIDIA-418-seRveR – 418.197.02-0Ubuntu0.18.04.1