Debian Package Tracker - nvidia-graphics-drivers-legacy-304xx

general

source: nvidia-graphics-drivers-legacy-304xx (non-free)
version: 304.137-7
maintainer: Debian NVIDIA Maintainers (archive) [DMD]
uploaders: Luca Boccassi [DMD] – Andreas Beckmann [DMD] – Vincent Cheng [DMD]
arch: amd64 i386
std-ver: 4.3.0
VCS: Git (Browse, QA)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

oldstable: 304.137-0~deb8u1
stable: 304.137-5~deb9u1
stable-bpo: 304.137-5~bpo9+1
unstable: 304.137-7

versioned links

304.137-0~deb8u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
304.137-5~bpo9+1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
304.137-5~deb9u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
304.137-7: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

libgl1-nvidia-legacy-304xx-glx (1 bugs: 0, 1, 0, 0)
libnvidia-legacy-304xx-cfg1
libnvidia-legacy-304xx-compiler
libnvidia-legacy-304xx-cuda1
libnvidia-legacy-304xx-cuda1-i386
libnvidia-legacy-304xx-glcore
libnvidia-legacy-304xx-ml1
libnvidia-legacy-304xx-nvcuvid1
nvidia-legacy-304xx-alternative
nvidia-legacy-304xx-driver (8 bugs: 0, 8, 0, 0)
nvidia-legacy-304xx-driver-bin
nvidia-legacy-304xx-driver-libs
nvidia-legacy-304xx-driver-libs-i386
nvidia-legacy-304xx-kernel-dkms
nvidia-legacy-304xx-kernel-source
nvidia-legacy-304xx-kernel-support
nvidia-legacy-304xx-opencl-icd
nvidia-legacy-304xx-smi
nvidia-legacy-304xx-vdpau-driver
xserver-xorg-video-nvidia-legacy-304xx (1 bugs: 0, 1, 0, 0)

action needed

Problems while searching for a new upstream version high

uscan had problems while searching for a new upstream version:

more than one main upstream tarballs listed.

Created: 2017-11-21 Last update: 2019-06-16 04:13

Failed to analyze the VCS repository. Please troubleshoot and fix the issue. high

vcswatch reports that there is an error with this package's VCS, or the debian/changelog file inside it. Please check the error shown below and try to fix it. You might have to update the VCS URL in the debian/control file to point to the correct repository.

fatal: could not read Username for 'https://salsa.debian.org': No such device or address

Created: 2018-02-27 Last update: 2019-06-16 03:46

9 security issues in sid high

There are 9 open security issues in sid.

9 important issues:

CVE-2017-6272: NVIDIA GPU Display Driver contains a vulnerability in the kernel mode layer handler where a value passed from a user to the driver is not correctly validated and used as the index to an array which may lead to a denial of service or possible escalation of privileges.
CVE-2018-6249: NVIDIA GPU Display Driver contains a vulnerability in kernel mode layer handler where a NULL pointer dereference may lead to denial of service or potential escalation of privileges.
CVE-2017-5715: Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis.
CVE-2017-6267: NVIDIA GPU Display Driver contains a vulnerability in the kernel mode layer handler where an incorrect initialization of internal objects can cause an infinite loop which may lead to a denial of service.
CVE-2018-6260: NVIDIA graphics driver contains a vulnerability that may allow access to application data processed on the GPU through a side channel exposed by the GPU performance counters. Local user access is required. This is not a network or remote attack vector.
CVE-2017-5753: Systems with microprocessors utilizing speculative execution and branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis.
CVE-2018-6253: NVIDIA GPU Display Driver contains a vulnerability in the DirectX and OpenGL Usermode drivers where a specially crafted pixel shader can cause infinite recursion leading to denial of service.
CVE-2017-5754: Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis of the data cache.
CVE-2017-6266: NVIDIA GPU Display Driver contains a vulnerability in the kernel mode layer handler where improper access controls could allow unprivileged users to cause a denial of service.

Please fix them.

Created: 2017-09-22 Last update: 2019-03-13 00:03

The package has not entered testing even though the delay is over normal

The package has not entered testing even though the 5-day delay is over. Check why.

Created: 2019-03-23 Last update: 2019-06-16 04:09

9 ignored security issues in jessie low

There are 9 open security issues in jessie.

9 issues skipped by the security teams:

CVE-2017-6272: NVIDIA GPU Display Driver contains a vulnerability in the kernel mode layer handler where a value passed from a user to the driver is not correctly validated and used as the index to an array which may lead to a denial of service or possible escalation of privileges.
CVE-2018-6249: NVIDIA GPU Display Driver contains a vulnerability in kernel mode layer handler where a NULL pointer dereference may lead to denial of service or potential escalation of privileges.
CVE-2017-5715: Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis.
CVE-2017-6267: NVIDIA GPU Display Driver contains a vulnerability in the kernel mode layer handler where an incorrect initialization of internal objects can cause an infinite loop which may lead to a denial of service.
CVE-2018-6260: NVIDIA graphics driver contains a vulnerability that may allow access to application data processed on the GPU through a side channel exposed by the GPU performance counters. Local user access is required. This is not a network or remote attack vector.
CVE-2017-5753: Systems with microprocessors utilizing speculative execution and branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis.
CVE-2018-6253: NVIDIA GPU Display Driver contains a vulnerability in the DirectX and OpenGL Usermode drivers where a specially crafted pixel shader can cause infinite recursion leading to denial of service.
CVE-2017-5754: Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis of the data cache.
CVE-2017-6266: NVIDIA GPU Display Driver contains a vulnerability in the kernel mode layer handler where improper access controls could allow unprivileged users to cause a denial of service.

Please fix them.

Created: 2017-09-22 Last update: 2019-03-13 00:03

9 ignored security issues in stretch low

There are 9 open security issues in stretch.

9 issues skipped by the security teams:

CVE-2017-6272: NVIDIA GPU Display Driver contains a vulnerability in the kernel mode layer handler where a value passed from a user to the driver is not correctly validated and used as the index to an array which may lead to a denial of service or possible escalation of privileges.
CVE-2018-6249: NVIDIA GPU Display Driver contains a vulnerability in kernel mode layer handler where a NULL pointer dereference may lead to denial of service or potential escalation of privileges.
CVE-2017-5715: Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis.
CVE-2017-6267: NVIDIA GPU Display Driver contains a vulnerability in the kernel mode layer handler where an incorrect initialization of internal objects can cause an infinite loop which may lead to a denial of service.
CVE-2018-6260: NVIDIA graphics driver contains a vulnerability that may allow access to application data processed on the GPU through a side channel exposed by the GPU performance counters. Local user access is required. This is not a network or remote attack vector.
CVE-2017-5753: Systems with microprocessors utilizing speculative execution and branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis.
CVE-2018-6253: NVIDIA GPU Display Driver contains a vulnerability in the DirectX and OpenGL Usermode drivers where a specially crafted pixel shader can cause infinite recursion leading to denial of service.
CVE-2017-5754: Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis of the data cache.
CVE-2017-6266: NVIDIA GPU Display Driver contains a vulnerability in the kernel mode layer handler where improper access controls could allow unprivileged users to cause a denial of service.

Please fix them.

Created: 2017-09-22 Last update: 2019-03-13 00:03

testing migrations

excuses:
- 95 days old (5 needed)
- xserver-xorg-video-nvidia-legacy-304xx/amd64 unsatisfiable Depends: xorg-video-abi-23 | xorg-video-abi-20 | xorg-video-abi-19 | xorg-video-abi-18 | xorg-video-abi-15 | xorg-video-abi-14 | xorg-video-abi-13 | xorg-video-abi-12 | xorg-video-abi-11 | xorg-video-abi-10 | xorg-video-abi-8 | xorg-video-abi-6.0
- xserver-xorg-video-nvidia-legacy-304xx/amd64 unsatisfiable Depends: xserver-xorg-core (<< 2:1.19.99)
- xserver-xorg-video-nvidia-legacy-304xx/i386 unsatisfiable Depends: xorg-video-abi-23 | xorg-video-abi-20 | xorg-video-abi-19 | xorg-video-abi-18 | xorg-video-abi-15 | xorg-video-abi-14 | xorg-video-abi-13 | xorg-video-abi-12 | xorg-video-abi-11 | xorg-video-abi-10 | xorg-video-abi-8 | xorg-video-abi-6.0
- xserver-xorg-video-nvidia-legacy-304xx/i386 unsatisfiable Depends: xserver-xorg-core (<< 2:1.19.99)
- Updating nvidia-graphics-drivers-legacy-304xx introduces new bugs: #900787, #925340
- Cannot be tested by piuparts (not a blocker) - (no link yet)
- uninstallable on arch amd64, autopkgtest delayed there
- Not touching package due to block request by freeze (please contact debian-release if update is needed)
- Not considered

news

[rss feed]

[2019-03-12] Accepted nvidia-graphics-drivers-legacy-304xx 304.137-7 (source) into unstable (Andreas Beckmann)
[2018-11-27] Accepted nvidia-graphics-drivers-legacy-304xx 304.137-6 (source) into unstable (Andreas Beckmann)
[2018-07-19] nvidia-graphics-drivers-legacy-304xx REMOVED from testing (Debian testing watch)
[2018-06-16] Accepted nvidia-graphics-drivers-legacy-304xx 304.137-0~deb8u1 (source) into oldstable-proposed-updates->oldstable-new, oldstable-proposed-updates (Andreas Beckmann)
[2018-03-13] Accepted nvidia-graphics-drivers-legacy-304xx 304.137-5~deb9u1~bpo8+1 (amd64 i386 source) into jessie-backports->backports-policy, jessie-backports (Andreas Beckmann)
[2018-03-03] Accepted nvidia-graphics-drivers-legacy-304xx 304.137-5~deb9u1 (source) into proposed-updates->stable-new, proposed-updates (Andreas Beckmann)
[2018-02-26] Accepted nvidia-graphics-drivers-legacy-304xx 304.137-5~bpo9+1 (amd64 i386 source) into stretch-backports (Andreas Beckmann)
[2018-02-05] nvidia-graphics-drivers-legacy-304xx 304.137-5 MIGRATED to testing (Debian testing watch)
[2018-01-31] Accepted nvidia-graphics-drivers-legacy-304xx 304.137-5 (source) into unstable (Andreas Beckmann)
[2018-01-21] nvidia-graphics-drivers-legacy-304xx 304.137-4 MIGRATED to testing (Debian testing watch)
[2018-01-16] Accepted nvidia-graphics-drivers-legacy-304xx 304.137-4 (source) into unstable (Andreas Beckmann)
[2017-11-30] Accepted nvidia-graphics-drivers-legacy-304xx 304.137-3~bpo9+1 (amd64 i386 source) into stretch-backports, stretch-backports (Andreas Beckmann)
[2017-11-27] nvidia-graphics-drivers-legacy-304xx 304.137-3 MIGRATED to testing (Debian testing watch)
[2017-11-22] Accepted nvidia-graphics-drivers-legacy-304xx 304.137-3 (source) into unstable (Andreas Beckmann)
[2017-11-21] nvidia-graphics-drivers-legacy-304xx 304.137-2 MIGRATED to testing (Debian testing watch)
[2017-11-16] Accepted nvidia-graphics-drivers-legacy-304xx 304.137-2 (source) into unstable (Andreas Beckmann)
[2017-10-18] nvidia-graphics-drivers-legacy-304xx 304.137-1 MIGRATED to testing (Debian testing watch)
[2017-10-12] Accepted nvidia-graphics-drivers-legacy-304xx 304.137-1 (source) into unstable (Andreas Beckmann)
[2017-09-19] nvidia-graphics-drivers-legacy-304xx 304.135-5 MIGRATED to testing (Debian testing watch)
[2017-09-13] Accepted nvidia-graphics-drivers-legacy-304xx 304.135-5 (source) into unstable (Andreas Beckmann)
[2017-08-23] nvidia-graphics-drivers-legacy-304xx 304.135-4 MIGRATED to testing (Debian testing watch)
[2017-08-18] Accepted nvidia-graphics-drivers-legacy-304xx 304.135-4 (source) into unstable (Andreas Beckmann)
[2017-07-05] nvidia-graphics-drivers-legacy-304xx 304.135-3 MIGRATED to testing (Debian testing watch)
[2017-06-29] Accepted nvidia-graphics-drivers-legacy-304xx 304.135-3 (source) into unstable (Andreas Beckmann)
[2017-04-11] Accepted nvidia-graphics-drivers-legacy-304xx 304.135-2~bpo8+1 (amd64 i386 source) into jessie-backports->backports-policy, jessie-backports (Andreas Beckmann)
[2017-04-11] Accepted nvidia-graphics-drivers-legacy-304xx 304.135-1~bpo70+1 (amd64 i386 source) into wheezy-backports->backports-policy, wheezy-backports (Andreas Beckmann)
[2017-04-08] Accepted nvidia-graphics-drivers-legacy-304xx 304.135-1 (source) into proposed-updates->stable-new, proposed-updates (Andreas Beckmann)
[2017-03-03] nvidia-graphics-drivers-legacy-304xx 304.135-2 MIGRATED to testing (Debian testing watch)
[2017-02-25] Accepted nvidia-graphics-drivers-legacy-304xx 304.135-2 (source) into unstable (Andreas Beckmann)
[2017-02-03] nvidia-graphics-drivers-legacy-304xx 304.134-2 MIGRATED to testing (Debian testing watch)

bugs [bug history graph]

all: 12
RC: 2
I&N: 10
M&W: 0
F&P: 0
patch: 0

links

homepage
lintian
buildd: logs, checks, clang, cross
popcon
browse source code
edit tags
security tracker