Nvidia: >> Cuda Toolkit Security Vulnerabilities
NVIDIA CUDA Toolkit, all versions prior to 11.1.1, contains a vulnerability in the NVJPEG library in which an out-of-bounds read or write operation may lead to code execution, denial of service, or information disclosure.
CVSS Score
7.8
EPSS Score
0.001
Published
2020-10-30
The (1) cudaHostAlloc and (2) cuMemHostAlloc functions in the NVIDIA CUDA Toolkit 3.2 developer drivers for Linux 260.19.26, and possibly other versions, do not initialize pinned memory, which allows local users to read potentially sensitive memory, such as file fragments during read or write operations.
CVSS Score
2.1
EPSS Score
0.001
Published
2011-01-22
Page 5