Drivers

It was recently discovered that the NVIDIA graphics drivers incorrectly sanitized user mode inputs. A local attacker could use this issue to possibly gain root privileges. What this means in summary is that NVIDIA graphics drivers could be made to run programs as an administrator. This vulnerability affects the following drivers: nvidia-graphics-drivers-304 nvidia-graphics-drivers-304-updates nvidia-graphics-drivers-340 nvidia-graphics-drivers-340-updates nvidia-graphics-drivers-352 nvidia-graphics-drivers-352-updates vulnerability A security issue affects these releases of Ubuntu and its derivatives:

CIFS: Fix memory leaks in SMB2_open aio: fix kernel memory disclosure in io_getevents() introduced in v3.10 aio: fix aio request leak when events are reaped by userspace genirq: Sanitize spurious interrupt detection of threaded irq Bluetooth: Fix properly ignoring LTKs of unknown types random: fix nasty entropy accounting bug scsi_cmnd: Introduce scsi_transfer_length helper target: Report correct response length for some commands iscsi-target: Fix ABORT_TASK + connection reset iscsi_queue_req memory leak Bluetooth: Fix authentication check for FIPS security level Bluetooth: 6LoWPAN: Fix MAC address universal/local bit handling ext4: fix data integrity sync in ordered mode x86_32, entry: Do syscall exit work on badsys lz4: fix another possible overrun Btrfs: fix scrub_print_warning to handle skinny metadata extents btrfs: allocate raid type kobjects dynamically Btrfs: send, account for orphan directories when building path strings Btrfs: output warning instead of error when loading free space cache failed

PCI/MSI: Fix memory leak in free_msi_irqs() ahci: add PCI ID for Marvell 88SE91A0 SATA Controller fs,userns: Change inode_capable to capable_wrt_inode_uidgid auditsc: audit_krule mask accesses need bounds checking rtl28xxu: add 1b80:d395 Peak DVB-T USB netfilter: ipv4: defrag: set local_df flag on defragmented skb rtl28xxu: add USB ID for Genius TVGo DVB-T03 rtl28xxu: add chipset version comments into device list ahci: Add Device ID for HighPoint RocketRaid 642L MIPS: asm: thread_info: Add _TIF_SECCOMP flag iser-target: Fix multi network portal shutdown regression target: Allow READ_CAPACITY opcode in ALUA Standby access state Target/iscsi,iser: Avoid accepting transport connections during stop stage rtl28xxu: add ID [0ccd:00b4] TerraTec NOXON DAB Stick (rev 3) mei: me: fix hw ready reset flow mei: me: drop harmful wait optimization mei: me: read H_CSR after asserting reset

Boss 5.0 Debian 7.5 Linux Mint 17

Fixed a performance regression when running KDE with desktop effects using the OpenGL compositing backend Fixed a regression that could cause OpenGL rendering corruption on X screens with 30 bit per pixel color Fixed several cosmetic issues in the clock control user interface of nvidia-settings. Added support for the GLX_EXT_stereo_tree extension Fixed a bug that could cause OpenGL programs to freeze under some low memory conditions. Updated the display configuration page in nvidia-settings to uniquely identify DisplayPort 1.

Xorg/Xserver 7.4 and above (up to 1.15) Linux kernel 2.6 or above (up to 3.13) glibc version 2.2 or 2.3 POSIX Shared Memory (/dev/shm) support is required for 3D applications