cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

General Discussions

black_zion
MVP
‎05-12-2019 07:21 PM

nVidia patches yet another critical security vulnerability in its drivers

That's scary. No real way to use older drivers sets yet again for team green.

https://www.tomshardware.com/news/nvidia-driver-update-severe-security-vulnerability,39323.html

7 Replies
elstaci
MVP
‎05-12-2019 09:05 PM

Thanks for the heads up on this issue. Will go to Nvidia and download the patch or driver with the patch.

Thanks again.

0 Likes
black_zion
In response to elstaci
MVP
‎05-12-2019 10:29 PM

Not something you see in the graphics card comparison articles, choose AMD and perhaps see your expensive high end video card stop receiving updates after a year thereby causing its performance to be exceeded by physically slower cards, or choose nVidia and perhaps experience security vulnerabilities.

0 Likes
elstaci
In response to black_zion
MVP
‎05-13-2019 04:44 AM

LoL, sound like a lose-lose situation.

0 Likes
black_zion
In response to elstaci
MVP
‎05-13-2019 07:49 AM

Hopefully Intel will solve those problems by forcing both companies to up their game.

pokester
MVP
‎05-13-2019 02:45 PM

NVIDIA's response to speculative side channels CVE-2017-5753, CVE-2017-5715, and CVE-2017-5754

This notice is in response to Google Project Zero's publication of novel information disclosure attacks that combine CPU speculative execution with known side channels. The issue was disclosed January 3, 2018.

NVIDIA’s core business is GPU computing. We believe our GPU hardware is immune to the reported security issue. As for our driver software, we are providing updates to help mitigate the CPU security issue.


Please actively monitor NVIDIA Product Security for available mitigations, updates, and additional information.

To subscribe to security notifications or learn more about NVIDIA's product security management process, go to NVIDIA Product Security.

0 Likes
pokester
In response to pokester
MVP
‎05-13-2019 02:46 PM

So I guess they are saying it is a software bug that leads to a vulnerability on the CPU not GPU?

0 Likes
black_zion
In response to pokester
MVP
‎05-13-2019 04:40 PM

The drivers have kernel level access, which is CPU Ring 0. A much bigger security risk than attacking a program that runs in Ring 3.