With the launch of the R460 driver this week, comes a series of security updates. Some security issues have been fixed in both the Windows and Linux graphics driver components.
CVE set 2021 “addresses issues that may lead to denial of service, escalation of privileges, modification of data, or disclosure of information.”
The vulnerabilities include a kernel ioctl through which clients in user mode can access inherited privileged APIs, the kernel driver does not fully comply with file system permissions for GPU-level isolation, and several vGPU software vulnerabilities.
Linux driver vulnerabilities have been fixed in 460.32.03 / 450.102.04, while an old Linux driver update is expected in about a week to fix the issues there.
Learn more about these NVIDIA graphics driver vulnerabilities in the NVIDIA Help section.