Debian Package Tracker - nvidia-graphics-drivers-legacy-304xx

general

source: nvidia-graphics-drivers-legacy-304xx (non-free)
version: 304.137-5
maintainer: Debian NVIDIA Maintainers (archive) [DMD]
uploaders: Andreas Beckmann [DMD] – Vincent Cheng [DMD] – Luca Boccassi [DMD]
arch: amd64 i386
std-ver: 4.1.3
VCS: Subversion (Browse, QA)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

o-o-bpo: 304.135-1~bpo70+1
oldstable: 304.135-1
old-bpo: 304.137-5~deb9u1~bpo8+1
stable: 304.137-5~deb9u1
stable-bpo: 304.137-5~bpo9+1
testing: 304.137-5
unstable: 304.137-5

versioned links

304.135-1~bpo70+1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
304.135-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
304.137-5~bpo9+1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
304.137-5~deb9u1~bpo8+1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
304.137-5~deb9u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
304.137-5: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

libgl1-nvidia-legacy-304xx-glx
libnvidia-legacy-304xx-cfg1
libnvidia-legacy-304xx-compiler
libnvidia-legacy-304xx-cuda1
libnvidia-legacy-304xx-cuda1-i386
libnvidia-legacy-304xx-glcore
libnvidia-legacy-304xx-ml1
libnvidia-legacy-304xx-nvcuvid1
nvidia-legacy-304xx-alternative
nvidia-legacy-304xx-driver
nvidia-legacy-304xx-driver-bin
nvidia-legacy-304xx-driver-libs
nvidia-legacy-304xx-driver-libs-i386
nvidia-legacy-304xx-kernel-dkms
nvidia-legacy-304xx-kernel-source
nvidia-legacy-304xx-kernel-support
nvidia-legacy-304xx-opencl-icd
nvidia-legacy-304xx-smi
nvidia-legacy-304xx-vdpau-driver
xserver-xorg-video-nvidia-legacy-304xx

action needed

Problems while searching for a new upstream version high

uscan had problems while searching for a new upstream version:

more than one main upstream tarballs listed.

Created: 2017-11-21 Last update: 2018-04-26 14:08

8 security issues in buster high

There are 8 open security issues in buster.

8 important issues:

CVE-2017-5753: Systems with microprocessors utilizing speculative execution and branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis.
CVE-2017-6266: NVIDIA GPU Display Driver contains a vulnerability in the kernel mode layer handler where improper access controls could allow unprivileged users to cause a denial of service.
CVE-2017-6267: NVIDIA GPU Display Driver contains a vulnerability in the kernel mode layer handler where an incorrect initialization of internal objects can cause an infinite loop which may lead to a denial of service.
CVE-2017-5715: Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis.
CVE-2018-6253: NVIDIA GPU Display Driver contains a vulnerability in the DirectX and OpenGL Usermode drivers where a specially crafted pixel shader can cause infinite recursion leading to denial of service.
CVE-2018-6249: NVIDIA GPU Display Driver contains a vulnerability in kernel mode layer handler where a NULL pointer dereference may lead to denial of service or potential escalation of privileges.
CVE-2017-6272: NVIDIA GPU Display Driver contains a vulnerability in the kernel mode layer handler where a value passed from a user to the driver is not correctly validated and used as the index to an array which may lead to a denial of service or possible escalation of privileges.
CVE-2017-5754: Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis of the data cache.

Please fix them.

Created: 2017-09-22 Last update: 2018-04-20 08:04

8 security issues in sid high

There are 8 open security issues in sid.

8 important issues:

CVE-2017-5753: Systems with microprocessors utilizing speculative execution and branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis.
CVE-2017-6266: NVIDIA GPU Display Driver contains a vulnerability in the kernel mode layer handler where improper access controls could allow unprivileged users to cause a denial of service.
CVE-2017-6267: NVIDIA GPU Display Driver contains a vulnerability in the kernel mode layer handler where an incorrect initialization of internal objects can cause an infinite loop which may lead to a denial of service.
CVE-2017-5715: Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis.
CVE-2018-6253: NVIDIA GPU Display Driver contains a vulnerability in the DirectX and OpenGL Usermode drivers where a specially crafted pixel shader can cause infinite recursion leading to denial of service.
CVE-2018-6249: NVIDIA GPU Display Driver contains a vulnerability in kernel mode layer handler where a NULL pointer dereference may lead to denial of service or potential escalation of privileges.
CVE-2017-6272: NVIDIA GPU Display Driver contains a vulnerability in the kernel mode layer handler where a value passed from a user to the driver is not correctly validated and used as the index to an array which may lead to a denial of service or possible escalation of privileges.
CVE-2017-5754: Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis of the data cache.

Please fix them.

Created: 2017-09-22 Last update: 2018-04-20 08:04

The VCS repository is not up to date, consider pushing the missing commits. high

vcswatch reports that the current version of the package is not in its VCS.
Either you need to push your commits, or the information about the package's VCS are out of date. A common cause of the latter issue when using the Git VCS is not specifying the correct branch when the packaging is not in the default one (remote HEAD branch), which is usually "master" but can be modified in salsa.debian.org in the project's general settings with the "Default Branch" field). Alternatively the Vcs-Git field in debian/control can contain a "-b <branch-name>" suffix to indicate what branch is used for the Debian packaging.

Created: 2018-02-27 Last update: 2018-03-27 08:09

lintian reports 2 warnings normal

Lintian reports 2 warnings about this package. You should make the package lintian clean getting rid of them.

Created: 2018-04-13 Last update: 2018-04-13 07:54

8 ignored security issues in stretch low

There are 8 open security issues in stretch.

8 issues skipped by the security teams:

CVE-2017-5753: Systems with microprocessors utilizing speculative execution and branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis.
CVE-2017-6266: NVIDIA GPU Display Driver contains a vulnerability in the kernel mode layer handler where improper access controls could allow unprivileged users to cause a denial of service.
CVE-2017-6267: NVIDIA GPU Display Driver contains a vulnerability in the kernel mode layer handler where an incorrect initialization of internal objects can cause an infinite loop which may lead to a denial of service.
CVE-2017-5715: Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis.
CVE-2018-6253: NVIDIA GPU Display Driver contains a vulnerability in the DirectX and OpenGL Usermode drivers where a specially crafted pixel shader can cause infinite recursion leading to denial of service.
CVE-2018-6249: NVIDIA GPU Display Driver contains a vulnerability in kernel mode layer handler where a NULL pointer dereference may lead to denial of service or potential escalation of privileges.
CVE-2017-6272: NVIDIA GPU Display Driver contains a vulnerability in the kernel mode layer handler where a value passed from a user to the driver is not correctly validated and used as the index to an array which may lead to a denial of service or possible escalation of privileges.
CVE-2017-5754: Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis of the data cache.

Please fix them.

Created: 2017-09-22 Last update: 2018-04-20 08:04

8 ignored security issues in jessie low

There are 8 open security issues in jessie.

8 issues skipped by the security teams:

CVE-2017-5753: Systems with microprocessors utilizing speculative execution and branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis.
CVE-2017-6266: NVIDIA GPU Display Driver contains a vulnerability in the kernel mode layer handler where improper access controls could allow unprivileged users to cause a denial of service.
CVE-2017-6267: NVIDIA GPU Display Driver contains a vulnerability in the kernel mode layer handler where an incorrect initialization of internal objects can cause an infinite loop which may lead to a denial of service.
CVE-2017-5715: Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis.
CVE-2018-6253: NVIDIA GPU Display Driver contains a vulnerability in the DirectX and OpenGL Usermode drivers where a specially crafted pixel shader can cause infinite recursion leading to denial of service.
CVE-2018-6249: NVIDIA GPU Display Driver contains a vulnerability in kernel mode layer handler where a NULL pointer dereference may lead to denial of service or potential escalation of privileges.
CVE-2017-6272: NVIDIA GPU Display Driver contains a vulnerability in the kernel mode layer handler where a value passed from a user to the driver is not correctly validated and used as the index to an array which may lead to a denial of service or possible escalation of privileges.
CVE-2017-5754: Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis of the data cache.

Please fix them.

Created: 2017-09-22 Last update: 2018-04-20 08:04

Standards version of the package is outdated. wishlist

The package should be updated to follow the last version of Debian Policy (Standards-Version 4.1.4 instead of 4.1.3).

Created: 2018-04-16 Last update: 2018-04-16 20:53

news

[rss feed]

[2018-03-13] Accepted nvidia-graphics-drivers-legacy-304xx 304.137-5~deb9u1~bpo8+1 (amd64 i386 source) into jessie-backports->backports-policy, jessie-backports (Andreas Beckmann)
[2018-03-03] Accepted nvidia-graphics-drivers-legacy-304xx 304.137-5~deb9u1 (source) into proposed-updates->stable-new, proposed-updates (Andreas Beckmann)
[2018-02-26] Accepted nvidia-graphics-drivers-legacy-304xx 304.137-5~bpo9+1 (amd64 i386 source) into stretch-backports (Andreas Beckmann)
[2018-02-05] nvidia-graphics-drivers-legacy-304xx 304.137-5 MIGRATED to testing (Debian testing watch)
[2018-01-31] Accepted nvidia-graphics-drivers-legacy-304xx 304.137-5 (source) into unstable (Andreas Beckmann)
[2018-01-21] nvidia-graphics-drivers-legacy-304xx 304.137-4 MIGRATED to testing (Debian testing watch)
[2018-01-16] Accepted nvidia-graphics-drivers-legacy-304xx 304.137-4 (source) into unstable (Andreas Beckmann)
[2017-11-30] Accepted nvidia-graphics-drivers-legacy-304xx 304.137-3~bpo9+1 (amd64 i386 source) into stretch-backports, stretch-backports (Andreas Beckmann)
[2017-11-27] nvidia-graphics-drivers-legacy-304xx 304.137-3 MIGRATED to testing (Debian testing watch)
[2017-11-22] Accepted nvidia-graphics-drivers-legacy-304xx 304.137-3 (source) into unstable (Andreas Beckmann)
[2017-11-21] nvidia-graphics-drivers-legacy-304xx 304.137-2 MIGRATED to testing (Debian testing watch)
[2017-11-16] Accepted nvidia-graphics-drivers-legacy-304xx 304.137-2 (source) into unstable (Andreas Beckmann)
[2017-10-18] nvidia-graphics-drivers-legacy-304xx 304.137-1 MIGRATED to testing (Debian testing watch)
[2017-10-12] Accepted nvidia-graphics-drivers-legacy-304xx 304.137-1 (source) into unstable (Andreas Beckmann)
[2017-09-19] nvidia-graphics-drivers-legacy-304xx 304.135-5 MIGRATED to testing (Debian testing watch)
[2017-09-13] Accepted nvidia-graphics-drivers-legacy-304xx 304.135-5 (source) into unstable (Andreas Beckmann)
[2017-08-23] nvidia-graphics-drivers-legacy-304xx 304.135-4 MIGRATED to testing (Debian testing watch)
[2017-08-18] Accepted nvidia-graphics-drivers-legacy-304xx 304.135-4 (source) into unstable (Andreas Beckmann)
[2017-07-05] nvidia-graphics-drivers-legacy-304xx 304.135-3 MIGRATED to testing (Debian testing watch)
[2017-06-29] Accepted nvidia-graphics-drivers-legacy-304xx 304.135-3 (source) into unstable (Andreas Beckmann)
[2017-04-11] Accepted nvidia-graphics-drivers-legacy-304xx 304.135-2~bpo8+1 (amd64 i386 source) into jessie-backports->backports-policy, jessie-backports (Andreas Beckmann)
[2017-04-11] Accepted nvidia-graphics-drivers-legacy-304xx 304.135-1~bpo70+1 (amd64 i386 source) into wheezy-backports->backports-policy, wheezy-backports (Andreas Beckmann)
[2017-04-08] Accepted nvidia-graphics-drivers-legacy-304xx 304.135-1 (source) into proposed-updates->stable-new, proposed-updates (Andreas Beckmann)
[2017-03-03] nvidia-graphics-drivers-legacy-304xx 304.135-2 MIGRATED to testing (Debian testing watch)
[2017-02-25] Accepted nvidia-graphics-drivers-legacy-304xx 304.135-2 (source) into unstable (Andreas Beckmann)
[2017-02-03] nvidia-graphics-drivers-legacy-304xx 304.134-2 MIGRATED to testing (Debian testing watch)
[2017-01-23] Accepted nvidia-graphics-drivers-legacy-304xx 304.134-2 (source) into unstable (Andreas Beckmann)
[2017-01-11] Accepted nvidia-graphics-drivers-legacy-304xx 304.134-0~deb8u1~bpo70+1 (amd64 i386 source) into wheezy-backports->backports-policy, wheezy-backports (Andreas Beckmann)
[2017-01-06] Accepted nvidia-graphics-drivers-legacy-304xx 304.134-0~deb8u1 (source) into proposed-updates->stable-new, proposed-updates (Andreas Beckmann)
[2017-01-02] Accepted nvidia-graphics-drivers-legacy-304xx 304.134-1~bpo8+1 (amd64 i386 source) into jessie-backports (Andreas Beckmann)

bugs [bug history graph]

all: 10
RC: 0
I&N: 10
M&W: 0
F&P: 0

links

homepage
lintian (0, 2)
buildd: logs, checks, clang
popcon
browse source code
edit tags
security tracker