| Autor |
Nachricht |
|
|
Titel: Nvidia Driver 'root-exploit': workaround
 Verfasst am: 17.10.2006, 09:24 Uhr
|
|
Team Member
Anmeldung: 23. Dez 2003
Beiträge: 109
|
|
Nvidia Driver For Linux v8774 and v8762 are subject to a buffer overflow bug that creates a means for hackers to inject hostile code as root.
by default the nvidia drivers try to accelerate the XRender extension (used for AA fonts and other things) in hardware
: Option "RenderAccel" "false" can indeed work around the exploit
in : Section "Device" , in /etc/X11/xorg.conf
change
Code:
Option "RenderAccel" "0"
save, restart X
exploit only possible on pre-96xx-series drivers
thanks to Thunderbird for the fix |
_________________
namu amida butsu
Zuletzt bearbeitet von etorix am 17.10.2006, 23:42 Uhr, insgesamt ein Mal bearbeitet
|
| |
|
|
|
 |
|
|
|
Titel: RE: Nvidia Driver
Verfasst am: 17.10.2006, 23:31 Uhr
|
|
Anmeldung: 05. Dez 2005
Beiträge: 414
Wohnort: Auckland, New Zealand
|
|
| Thanks etorix |
_________________
Linux is evolution, not intelligent design - Linus Torvalds
|
| |
|
|
|
|
|
|
|
Titel:
Verfasst am: 18.10.2006, 00:26 Uhr
|
|
Anmeldung: 28. Sep 2005
Beiträge: 16
Wohnort: Michigan, USA
|
|
|
Zitat:
exploit only possible on pre-96xx-series drivers
Thanks for the info. How can we determine if our driver is one of those susceptible? |
|
|
| |
|
|
|
|
|
|
|
Titel:
Verfasst am: 18.10.2006, 03:25 Uhr
|
|
Team Member
Anmeldung: 23. Dez 2003
Beiträge: 109
|
|
Nvidia Driver For Linux v8774 and v8762 are subject to a buffer overflow bug
infobash -v3 , in a term, will show which driver youre on |
_________________
namu amida butsu
|
| |
|
|
|
|
|
|
|
Titel:
Verfasst am: 18.10.2006, 03:45 Uhr
|
|
Anmeldung: 27. Jun 2005
Beiträge: 258
|
|
|
|
|
|
|
|
|
Titel:
Verfasst am: 18.10.2006, 07:19 Uhr
|
|
Anmeldung: 07. Jun 2006
Beiträge: 31
Wohnort: planet earth
|
|
| I did a upgrade to 1.0-9625..about 24 hr's ago. So far no vid lock's or strange stuff poping up...But I not gamer,, just do web and a little multi-media stuff.. |
|
|
| |
|
|
|
|
|
|
|
Titel:
Verfasst am: 18.10.2006, 14:17 Uhr
|
|
Anmeldung: 08. Dez 2005
Beiträge: 300
|
|
| 9626 is out now...so far no issues with this version as well. |
|
|
| |
|
|
|
|
|
|
|
Titel:
Verfasst am: 19.10.2006, 00:30 Uhr
|
|
Team Member
Anmeldung: 23. Dez 2003
Beiträge: 109
|
|
this is a 'proof-of-concept' exploit , apparently only possible on 8774
never actually seen in-the-wild
but we like to take precautions, eh |
_________________
namu amida butsu
|
| |
|
|
|
|
|
|
|
Titel:
Verfasst am: 20.10.2006, 12:04 Uhr
|
|
Anmeldung: 18. Apr 2006
Beiträge: 17
|
|
How serious is this bug?
How easy will hackers get into your machine? Ofcourse they need some kind of access to your linux system, so is it really that serious? |
|
|
| |
|
|
|
|
|
|
|
Titel:
Verfasst am: 20.10.2006, 12:18 Uhr
|
|
Anmeldung: 17. Dez 2003
Beiträge: 16792
|
|
Well just do:
update-scripts-kanotix.sh
install-nvidia-debian.sh -c
if you expericence problems use script without -c. |
|
|
| |
|
|
|
|
|
|
|
Titel:
Verfasst am: 20.10.2006, 12:28 Uhr
|
|
Anmeldung: 16. Aug 2004
Beiträge: 1905
|
|
| Browsing a website might be enough. |
|
|
| |
|
|
|
|
|
|
|
Titel:
Verfasst am: 20.10.2006, 14:58 Uhr
|
|
Anmeldung: 27. Jun 2005
Beiträge: 258
|
|
| nvidia just released a new, non-beta driver version, v8776, which is supposed to fix this bug. i installed that instead of the v9626 beta driver and it seems fine |
|
|
| |
|
|
|
|
|
|
|
Titel:
Verfasst am: 20.10.2006, 18:40 Uhr
|
|
Anmeldung: 29. Mar 2005
Beiträge: 96
Wohnort: Terra
|
|
|
|
|
|
|
|
|
Titel:
Verfasst am: 20.10.2006, 19:22 Uhr
|
|
Anmeldung: 23. Feb 2006
Beiträge: 45
Wohnort: Adelaide, Australia
|
|
|
Zitat:
What version of the driver is installed by using install-nvidia-debian.sh?
I used the script about 30 minutes ago and it installed the latest driver, 8776. |
|
|
| |
|
|
|
|
|
|
