UBUNTU-CVE-2024-53874

See a problem?
Please try reporting it to the source first.

Source

https://ubuntu.com/security/CVE-2024-53874

Import Source

https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2024/UBUNTU-CVE-2024-53874.json

JSON Data

https://api.osv.dev/v1/vulns/UBUNTU-CVE-2024-53874

Related

CVE-2024-53874

Published

2025-02-25T21:15:00Z

Modified

2025-02-26T04:38:45Z

Summary

[none]

Details

NVIDIA CUDA toolkit for all platforms contains a vulnerability in the cuobjdump binary, where a user could cause an out-of-bounds read by passing a malformed ELF file to cuobjdump. A successful exploit of this vulnerability might lead to a partial denial of service.

References

Affected packages

Ubuntu:Pro:16.04:LTS / nvidia-cuda-toolkit

Package

Name: nvidia-cuda-toolkit
Purl: pkg:deb/ubuntu/nvidia-cuda-toolkit@7.5.18-0ubuntu1?arch=source&distro=esm-apps/xenial

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

6.*

6.5.14-2

6.5.19-2

7.*

7.0.28-1

7.0.28-2

7.0.28-2ubuntu1

7.5.18-0ubuntu1

Ecosystem specific

{
    "ubuntu_priority": "low",
    "priority_reason": "Upstream rates this as being low severity"
}

Ubuntu:Pro:18.04:LTS / nvidia-cuda-toolkit

Package

Name: nvidia-cuda-toolkit
Purl: pkg:deb/ubuntu/nvidia-cuda-toolkit@9.1.85-3ubuntu1?arch=source&distro=esm-apps/bionic

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

8.*

8.0.61-1

8.0.61-2

8.0.61-3

9.*

9.0.176-2

9.1.85-1

9.1.85-2ubuntu1

9.1.85-3

9.1.85-3ubuntu1

Ecosystem specific

{
    "ubuntu_priority": "low",
    "priority_reason": "Upstream rates this as being low severity"
}

Ubuntu:20.04:LTS / nvidia-cuda-toolkit

Package

Name: nvidia-cuda-toolkit
Purl: pkg:deb/ubuntu/nvidia-cuda-toolkit@10.1.243-3?arch=source&distro=focal

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

10.*

10.1.168-1build1

10.1.168-2

10.1.168-3

10.1.243-1ubuntu2

10.1.243-1ubuntu3

10.1.243-2

10.1.243-3

Ecosystem specific

{
    "ubuntu_priority": "low",
    "priority_reason": "Upstream rates this as being low severity"
}

Ubuntu:22.04:LTS / nvidia-cuda-toolkit

Package

Name: nvidia-cuda-toolkit
Purl: pkg:deb/ubuntu/nvidia-cuda-toolkit@11.5.1-1ubuntu1?arch=source&distro=jammy

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

11.*

11.3.1-4

11.3.1-5

11.4.3-1

11.4.3-1build1

11.5.1-1build1

11.5.1-1ubuntu1

Ecosystem specific

{
    "ubuntu_priority": "low",
    "priority_reason": "Upstream rates this as being low severity"
}

Ubuntu:24.10 / nvidia-cuda-toolkit

Package

Name: nvidia-cuda-toolkit
Purl: pkg:deb/ubuntu/nvidia-cuda-toolkit@12.1.1-2?arch=source&distro=oracular

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

12.*

12.0.1-4build4

12.1.1-1

12.1.1-2

Ecosystem specific

{
    "ubuntu_priority": "low",
    "priority_reason": "Upstream rates this as being low severity"
}

Ubuntu:24.04:LTS / nvidia-cuda-toolkit

Package

Name: nvidia-cuda-toolkit
Purl: pkg:deb/ubuntu/nvidia-cuda-toolkit@12.0.1-4build4?arch=source&distro=noble

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

12.*

12.0.1-2

12.0.1-3

12.0.1-4

12.0.1-4build1

12.0.1-4build3

12.0.1-4build4

Ecosystem specific

{
    "ubuntu_priority": "low",
    "priority_reason": "Upstream rates this as being low severity"
}