4.7

CVE-2020-5967

NVIDIA Linux GPU Display Driver, all versions, contains a vulnerability in the UVM driver, in which a race condition may lead to a denial of service.

Daten sind bereitgestellt durch National Vulnerability Database (NVD)
NvidiaQuadro Firmware Version >= 390 < 390.138
   NvidiaQuadro Version-
NvidiaQuadro Firmware Version >= 440 < 440.100
   NvidiaQuadro Version-
NvidiaQuadro Firmware Version >= 450 < 450.51
   NvidiaQuadro Version-
NvidiaTesla Firmware Version >= 418 < 418.152.00
   NvidiaTesla Version-
NvidiaTesla Firmware Version >= 440 < 440.95.01
   NvidiaTesla Version-
NvidiaTesla Firmware Version >= 450 < 450.51.05
   NvidiaTesla Version-
NvidiaGeforce Firmware Version >= 390 < 390.138
   NvidiaGeforce Version-
NvidiaGeforce Firmware Version >= 440 < 440.100
   NvidiaGeforce Version-
NvidiaGeforce Firmware Version >= 450 < 450.51
   NvidiaGeforce Version-
NvidiaNvs Firmware Version >= 390 < 390.138
   NvidiaNvs Version-
NvidiaNvs Firmware Version >= 440 < 440.100
   NvidiaNvs Version-
NvidiaNvs Firmware Version >= 450 < 450.51
   NvidiaNvs Version-
CanonicalUbuntu Linux Version18.04 SwEditionlts
CanonicalUbuntu Linux Version19.10
CanonicalUbuntu Linux Version20.04 SwEditionlts
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.04% 0.11
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 4.7 1 3.6
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H
nvd@nist.gov 1.9 3.4 2.9
AV:L/AC:M/Au:N/C:N/I:N/A:P
CWE-362 Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

The product contains a concurrent code sequence that requires temporary, exclusive access to a shared resource, but a timing window exists in which the shared resource can be modified by another code sequence operating concurrently.

https://usn.ubuntu.com/4404-1/
Third Party Advisory
https://usn.ubuntu.com/4404-2/
Third Party Advisory