For a list of current Security Bulletins and more information, check Security Bulletin page.
For a list of current Security Bulletins and more information, check Security Bulletin page.
Bulletin ID | Title | Severity | CVE Identifier(s) | Publish Date | Last Updated |
|---|---|---|---|---|---|
| 4601 | Security Bulletin: NVIDIA Linux for Tegra (L4T) ''KRACK'' vulnerabilities | High | ''KRACK'' Vulnerabilities: Escalation of Privileges or Information Disclosure: CVE-2017-13077, CVE-2017-13078, CVE-2017-13079, CVE-2017-13080, CVE-2017-13081, CVE-2017-13082, CVE-2017-13086, CVE-2017-13087, CVE-2017-13088 | 20 Dec 2017 | 01 Jan 2018 |
| 4569 | Security Bulletin: NVIDIA Shield Tablet contains multiple vulnerabilities; updates for ''BlueBorne'' and ''KRACK'' | Medium | Denial of service or possible escalation of privileges: CVE-2017-0331, CVE-2017-0340, CVE-2017-0744, CVE-2017-6247, CVE-2017-6248, CVE-2017-6249, CVE-2017-6258 ''BlueBorne'' vulnerabilities:Remote execution: CVE-2017-0781, CVE-2017-0782 Man-in-the-middle: CVE-2017-0783 Information disclosure: CVE-2017-0785 ''KRACK'' vulnerabilities: Escalation of privileges or information disclosure: CVE-2017-13077, CVE-2017-13078, CVE-2017-13079, CVE-2017-13080, CVE-2017-13081, CVE-2017-13082, CVE-2017-13086, CVE-2017-13087, CVE-2017-13088 | 30 Nov 2017 | 30 Nov 2017 |
| 4579 | Security Bulletin: NVIDIA Shield TV contains updates for ''KRACK'' vulnerabilities | Medium | ''KRACK'' Vulnerabilities: Escalation of Privileges or Information Disclosure: CVE-2017-13077, CVE-2017-13078, CVE-2017-13079, CVE-2017-13080, CVE-2017-13081, CVE-2017-13082, CVE-2017-13086, CVE-2017-13087, CVE-2017-1308 | 01 Nov 2017 | 01 Nov 2017 |
| 4561 | Security Bulletin: NVIDIA Tegra Jetson L4T contains multiple vulnerabilities; updates for ''BlueBorne'' and ''Dnsmasq'' | Medium | Denial of service or escalation of privileges: CVE-2016-8482, CVE-2017-0307, CVE-2016-6777, CVE-2016-0834, CVE-2016-6775, CVE-2016-3815, CVE-2016-6776, CVE-2016-3847, CVE-2017-0428, CVE-2016-8424, CVE-2016-8425, CVE-2017-0331, CVE-2016-8430, CVE-2016-8428, CVE-2016-8427, CVE-2017-6273, CVE-2016-8395, CVE-2016-6789, CVE-2016-8400, CVE-2016-8449, CVE-2017-0332, CVE-2016-3930 Denial of service: CVE-2017-0306, CVE-2016-3814, CVE-2017-0326, CVE-2016-6915, CVE-2016-6916, CVE-2016-6917, CVE-2017-0327, CVE-2016-2491, CVE-2016-3793, CVE-2016-8426, CVE-2016-8429 Escalation of privileges: CVE-2017-0429, CVE-2016-2434, CVE-2016-3873, CVE-2017-0325 Information disclosure: CVE-2016-8397 ''BlueBorne'' Linux vulnerabilities:Remote execution: CVE-2017-0781, CVE-2017-0782 Man-in-the-middle: CVE-2017-0783 Information disclosure: CVE-2017-0785 ''Dnsmasq'' Linux vulnerabilities:Denial of service: CVE-2017-14491, CVE-2017-14492, CVE-2017-14493, CVE-2017-14495, CVE-2017-14496 Information Disclosure: CVE-2017-14494 | 16 Oct 2017 | 17 Oct 2017 |
| 4560 | Security Bulletin: NVIDIA installer contains a vulnerability in NVISystemService64 affecting GFE | Medium | Denial of service or escalation of privileges: CVE-2017-0316 | 16 Oct 2017 | 16 Oct 2017 |
| 4549 | Security Bulletin: NVIDIA Shield TV contains multiple vulnerabilities; update on ''BlueBorne'' | Medium | Denial of service or possible escalation of privileges: CVE-2017-6247, CVE-2017-6248, CVE-2017-6249, CVE-2017-6258 Denial of service: CVE-2017-0326 ''BlueBorne'' Android™ vulnerabilities:Remote execution: CVE-2017-0781, CVE-2017-0782 Man-in-the-middle: CVE-2017-0783 Information disclosure: CVE-2017-0785 | 05 Oct 2017 | 05 Oct 2017 |
| 4548 | Security Bulletin: NVIDIA Shield TV and Tablet contain multiple vulnerabilities | Medium | Denial of service or escalation of privileges: CVE-2016-6777, CVE-2016-6776, CVE-2016-8482, CVE-2017-0428 Denial of service: CVE-2016-6790, CVE-2016-6775, CVE-2016-2491, CVE-2016-6747 Escalation of privileges: CVE-2016-6789 Information disclosure: CVE-2016-8397 | 27 Sep 2017 | 27 Sep 2017 |
| 4544 | Security Bulletin: NVIDIA GPU contains multiple vulnerabilities in the kernel mode layer handler | Medium | Denial of service or escalation of privileges: CVE-2017-6268, CVE-2017-6269, CVE-2017-6277, CVE-2017-6272 Denial of service: CVE-2017-6266, CVE-2017-6267, CVE-2017-6270, CVE-2017-6271 | 21 Sep 2017 | 25 Sep 2017 |
| 4525 | Security Bulletin: NVIDIA GPU contains multiple vulnerabilities in the kernel mode layer handler | Medium | Denial of Service or Escalation of Privileges: CVE-2017-6252, CVE-2017-6253, CVE-2017-6254, CVE-2017-6255, CVE-2017-6256, CVE-2017-6257 Denial of Service: CVE-2017-6259, CVE-2017-6260 Escalation of Privileges: CVE-2017-6251 | 24 Sep 2017 | 25 Sep 2017 |
| 4490 | Security Bulletin: NVIDIA Shield TV and Tablet contain multiple vulnerabilities | Medium | Denial of Service or Escalation of Privileges: CVE-2016-8400, CVE-2017-0331, CVE-2016-8395, CVE-2016-8424, CVE-2016-8425, CVE-2016-8427, CVE-2016-8428, CVE-2016-8430, CVE-2016-8429, CVE-2016-8449 Escalation of Privileges: CVE-2017-0429 Information Disclosure: CVE-2016-8460, CVE-2017-0448 | 14 Jun 2017 | 22 Jun 2017 |
| 4462 | Security Bulletin: NVIDIA GPU Display driver contains multiple vulnerabilities in the kernel mode layer handler | Medium | Denial of service or Escalation of Privileges: CVE-2017-0341, CVE-2017-0342, CVE-2017-0343, CVE-2017-0345, CVE-2017-0346, CVE-2017-0347, CVE-2017-0348, CVE-2017-0349, CVE-2017-0351 Denial of Service: CVE-2017-0350, CVE-2017-0353, CVE-2017-0354, CVE-2017-0355 Escalation of Privileges: CVE-2017-0344, CVE-2017-0352 | 09 May 2017 | 25 May 2017 |
| 4459 | Security Bulletin: NVIDIA GeForce Experience contains a vulnerability in NVIDIA Web Helper.exe (repackaged Node.js) | Medium | Bypass of Application Whitelisting: CVE-2017-6250 | 27 Apr 2017 | 27 Apr 2017 |
| 4456 | Security Notice: Bypass Application Whitelisting through NVIDIA node.js | Medium | Bypass of Application Whitelisting: CVE-2017-6250 | 21 Apr 2017 | 27 Apr 2017 |
| 4398 | Security Bulletin: NVIDIA GPU Display Driver contains multiple vulnerabilities in the kernel mode layer handler | Medium | Denial of Service or Escalation of Privileges: CVE-2017-0308, CVE-2017-0309, CVE-2017-0311, CVE-2017-0312, CVE-2017-0313, CVE-2017-0314, CVE-2017-0315, CVE-2017-0321, CVE-2017-0322, CVE-2017-0323, CVE-2017-0324 Denial of Service: CVE-2017-0310, CVE-2017-0318, CVE-2017-0319, CVE-2017-0320 Escalation of Privileges: CVE-2017-0317 | 14 Feb 2017 | 30 May 2017 |
| 4279 | Security Bulletin: Vulnerability in NVIDIA Web Helper.exe affects NVIDIA GeForce Experience (CVE-2016-8827) | Medium | Information Disclosure: CVE-2016-8827 | 14 Dec 2016 | 14 Dec 2016 |
| 4278 | Security Bulletin: NVIDIA Windows GPU Display Driver contains multiple vulnerabilities in the kernel mode layer (nvlddmkm.sys) handler for DxgDdiEscape and Linux GPU Display Driver contains a vulnerability in the kernel mode layer (nvidia.ko) | Medium | Denial of Service or Escalation of Privileges: CVE-2016-8822, CVE-2016-8823, CVE-2016-8825 Denial of Service: CVE-2016-8826 Escalation of Privileges: CVE-2016-8824, CVE-2016-8821 | 14 Feb 2016 | 09 MAr 2017 |
| 4276 | Security Bulletin: NVIDIA Shield contains multiple vulnerabilities in nvhost_job.c | Medium | Denial of Service: CVE-2016-6915, CVE-2016-6916, CVE-2016-6917 | 09 Dec 2016 | 09 Dec 2016 |
| 4267 | Security Bulletin: NVIDIA Shield contains multiple vulnerabilities in Mediaserver and Kernel | Medium | Escalation of Privileges: CVE-2016-3847, CVE-2016-3873, CVE-2016-3933, CVE-2016-3930, CVE-2016-3844, CVE-2016-3848, CVE-2016-3793 Information Disclosure: CVE-2016-3815, CVE-2016-6677, CVE-2016-6686, CVE-2016-6687, CVE-2016-6688 | 30 Nov 2016 | 05 Dec 2016 |
| 4257 | Security Bulletin: NVIDIA Windows GPU Display Driver contains multiple vulnerabilities in the kernel mode layer (nvlddmkm.sys) handler for DxgDdiEscape | Medium | Denial of Service or Escalation of Privileges: CVE-2016-8813, CVE-2016-8814, CVE-2016-8815, CVE-2016-8816, CVE-2016-8817, CVE-2016-8818, CVE-2016-8819 Denial of Service or Information Disclosure: CVE-2016-8820 | 18 Nov 2016 | 09 Mar 2017 |
| 4246 | Security Bulletin: NVIDIA Linux GPU Display Driver contains missing permissions check and improper validation vulnerabilities | Medium | Escalation of Privileges: CVE-2016-7382 and CVE-2016-7389 | 28 Oct 2016 | 09 Mar 2017 |
| 4247 | Security Bulletin: NVIDIA Windows GPU Display Driver contains multiple vulnerabilities in the kernel mode layer (nvlddmkm.sys) handler | Medium | Denial of Service or Escalation of Privileges: CVE-2016-8805, CVE-2016-8806, CVE-2016-8807, CVE-2016-8808, CVE-2016-8809, CVE-2016-8810, CVE-2016-8811, CVE-2016-7391, CVE-2016-7387, CVE-2016-7385, CVE-2016-7390, CVE-2016-7384, CVE-2016-7388, CVE-2016-7381, CVE-2016-7383 Escalation of Privileges: CVE-2016-7382 Information Disclosure: CVE-2016-7386 | 28 Oct 2016 | 09 Mar 2017 |
| 4247 | NVIDIA GeForce Experience contains a vulnerability in the kernel mode layer (nvstreamkms.sys) | Medium | Denial of Service or Escalation of Privileges: CVE-2016-8812 | 28 Oct 2016 | 09 Mar 2017 |
| 4213 | Security Bulletin: Multiple vulnerabilities affect Quadro, NVS, and GeForce Windows based systems | Medium | Denial of Service: CVE-2016-4959, CVE-2016-4961, CVE-2016-5025 Denial of Service or Escalation of Privileges: CVE-2016-3161, CVE-2016-5852 Escalation of Privileges: CVE-2016-4960 | 19 Aug 2016 | 19 Aug 2016 |
| 4208 | Security Bulletin: Tegra Linux Kernel Driver vulnerabilities | Medium | Escalation of Privileges: CVE-2016-2434, CVE-2016-2435, CVE-2016-2436, CVE-2016-2437, CVE-2016-2445, CVE-2016-2446, CVE-2016-2490 CVE-2016-2491 | 02 Aug 2016 | 02 Aug 2016 |
| 4059 | Security Bulletin: CVE-2016-2556: Kernel driver escape can allow access to restricted functionality | Medium | Denial of Service or Escalation of Privilege: CVE-2016-2556 | 21 Mar 2016 | 21 Mar 2016 |
| 4060 | Security Bulletin: CVE-2016-2557: Kernel driver escape privileged memory access | Medium | Denial of Service, Escalation of Privileges or Information Disclosure: CVE-2016-2557 | 21 Mar 2016 | 21 Mar 2016 |
| 4061 | Security Bulletin: CVE-2016-2558: Kernel driver escape allows untrusted pointer | Medium | Denial of Service, Escalation of Privileges or Information Disclosure: CVE-2016-2558 | 21 Mar 2016 | 21 Mar 2016 |
| 3810 | Security Bulletin: Google Android Stagefright multimedia vulnerabilities | Medium | Denial of Service or Escalation of Privileges: CVE-2015-1538, CVE-2015-1539, CVE-2015-3824, CVE-2015-3826,CVE-2015-3827, CVE-2015-3828,CVE-2015-3829, CVE-2015-3864 | 20 Nov 2015 | 20 Nov 2015 |
| 3806 | Security Bulletin: CVE-2015-7866: NVIDIA control panel unquoted path | Medium | Escalation of Privileges: CVE-2015-7866 | 18 Nov 2015 | 18 Nov 2015 |
| 3807 | Security Bulletin: CVE-2015-7865: Stereoscopic 3D Driver service arbitrary run key creation | Medium | Escalation of Privileges: CVE-2015-7865 | 18 Nov 2015 | 18 Nov 2015 |
| 3808 | Security Bulletin: CVE-2015-7869: Unsanitized user mode input | Medium | Denial of Service, Escalation of Privileges, or Information Disclosure: CVE-2015-7869 | 18 Nov 2015 | 18 Nov 2015 |
| 3809 | Security Bulletin: Microsoft Detours security update | Medium | Escalation of Privileges: No CVE | 18 Nov 2015 | 18 Nov 2015 |
| 3802 | Security Bulletin: CVE-2015-5053: GPU mappings of third-party device IO memory | Medium | Escalation of Privileges: CVE-2015-5053 | 09 Nov 2015 | 09 Nov 2015 |
| 3763 | Security Bulletin: CVE-2015-5950 Memory corruption due to an unsanitized pointer in the NVIDIA display driver | Medium | Escalation of Privileges: CVE-2015-5950 | 25 Sep 2015 | 25 Sep 2015 |
| 3693 | Security Bulletin: CVE-2015-3625: Privilege Escalation via Unsanitized pointer dereference in NVIDIA FreeBSD Kernel Driver | Medium | Escalation of Privileges: CVE-2015-3625 | 19 Jun 2015 | 19 Jun 2015 |
| 4386 | Security Bulletin: Vulnerabilities in Bash affect NVIDIA Tegra Linux L4T | Medium | Denial of Service: CVE-2014-6271, CVE-2014-7169, CVE-2014-7186, CVE-2014-7187, CVE-2014-6277, CVE-2014-6278 | 03 Mar 2015 | 03 Feb 2017 |
| 3634 | Security Bulletin: CVE-2015-1170: Windows privilege impersonation check | Medium | Escalation of Privileges: CVE-2015-1170 | 02 Mar 2015 | 02 Mar 2015 |
| 3618 | Security Bulletin: CVE-2014-5332: Tegra Linux Kernel NVMap vulnerability | Medium | Escalation of Privileges: CVE-2014-5332 | 15 Jan 2015 | 15 Jan 2015 |
| 3610 | Security Bulletin: CVE-2014-8298: GLX-INDIRECT (Including CVE-2014-8093, CVE-2014-8098) | Medium | Denial of Service or Escalation of Privileges: CVE-2014-8298, CVE-2014-8093, CVE-2014-8098 | 09 Dec 2014 | 09 Dec 2014 |
| 3566 | Security Bulletin: CVE-2014-0224: GameStream OpenSSL Vulnerability | Medium | Denial of Service, Escalation of Privileges or Information Disclosure: CVE-2014-0224 | 09 Sep 2014 | 09 Sep 2014 |
| 3492 | Security Bulletin: CVE-2014-0160: Gamestream OpenSSL Vulnerability | Medium | Information Disclosure: CVE-2014-0160 | 29 Apr 2014 | 29 Apr 2014 |
| 3377 | Security Bulletin: CVE-2013-5987: Unprivileged GPU access vulnerability | Medium | Denial of Service, Escalation of Privileges or Information Disclosure: CVE-2013-5987 | 02 Dec 2013 | 02 Dec 2013 |
| 3290 | Security Bulletin: CVE-2013-0131: NVIDIA UNIX GPU Driver ARGB cursor buffer overflow in ''NoScanout'' mode | Medium | Denial of Service: CVE-2013-0131 | 02 Apr 2013 | 02 Apr 2013 |
| 3288 | Security Bulletin: CVE-2013-0109 NVIDIA Display Driver service vulnerability | Medium | Escalation of Privileges: CVE-2013-0109, CVE-2013-0110, CVE-2013-0111 | 22 Feb 2013 | 22 Feb 2013 |
| 3288 | Security Bulletin: CVE-2013-0110 NVIDIA Stereoscopic 3D Driver service vulnerability | Medium | Escalation of Privileges: CVE-2013-0109, CVE-2013-0110, CVE-2013-0111 | 22 Feb 2013 | 22 Feb 2013 |
| 3288 | Security Bulletin: CVE-2013-0111 NVIDIA update service daemon vulnerability | Medium | Escalation of Privileges: CVE-2013-0109, CVE-2013-0110, CVE-2013-0111 | 22 Feb 2013 | 22 Feb 2013 |
| 3140 | Security Bulletin: CVE-2012-4225 NVIDIA UNIX graphics driver Vulnerability | Medium | Escalation of Privileges: CVE-2012-4225 | 02 Oct 2013 | 20 Feb 2013 |
| 3109 | Security Bulletin: Security vulnerability CVE-2012-0946 in the NVIDIA UNIX driver | Medium | Escalation of Privileges: CVE-2012-0946 | 04 Apr 2012 | 06 Aug 2012 |
| 1971 | Security Bulletin: CVE-2013-5987: Unprivileged GPU access vulnerability | Medium | Escalation of Privileges: CVE-2006-5379 | 18 Oct 2006 | 20 Feb 2013 |