After Intel security flaws it’s time for Nvidia. The latest drivers fix troublesome performance and security issues.

Nvidia has posted a security bulletin detailing what was fixed. Here’s a summary of the security issues:

  • An attacker could create a hard link to trick the user mode video trace logger. This hack allowed code execution, denial of service or escalation of privileges.
  • A specially crafted shader could cause an out of bounds access of an input texture array, which could lead to a denial of service of code execution.
  • Same as above, but with a shader local temporary array instead of an input texture array
  • It was possible to use kernel handler in a way that the properties were not always guaranteed to be valid, leading to denial of service.
  • Also in a kernel handler, an incorrect use of default permissions for an object exposed an unintended actor, loading to information disclosure or denial of service.

All of these issues are in Windows driver only. Moral of the story is not to use Windows, use Linux instead. Jokes aside, you should always update your software and drivers.