| Autor | Nachricht | 
  
    |  | 
        
					| Titel: Nvidia Driver 'root-exploit': workaround  Verfasst am: 17.10.2006, 09:24 Uhr |  | 
  
    | 
        
          | Team Member 
  
  
 Anmeldung: 23. Dez 2003
 Beiträge: 109
 
 
 |  | 
        
          | Nvidia Driver For Linux v8774 and v8762 are subject to a buffer overflow bug that creates a means for hackers to inject hostile code as root. by default the nvidia drivers try to accelerate the XRender extension (used for AA fonts and other things) in hardware
 : Option "RenderAccel" "false" can indeed work around the exploit
 in : Section "Device" , in /etc/X11/xorg.conf
 change
 
 
 Code: 
Option "RenderAccel" "0"
 
 
 save, restart X
 
 exploit only possible on pre-96xx-series drivers
 
 thanks to Thunderbird for the fix
 |  
          | _________________
 namu amida butsu
 
 Zuletzt bearbeitet von etorix am 17.10.2006, 23:42 Uhr, insgesamt ein Mal bearbeitet
 |  
         
	        |  |  | 
  
    |  | 
  
    |  | 
  
    |  | 
        
					| Titel: RE: Nvidia Driver  Verfasst am: 17.10.2006, 23:31 Uhr |  | 
  
    | 
        
          | 
  
 Anmeldung: 05. Dez 2005
 Beiträge: 414
 Wohnort: Auckland, New Zealand
 
 |  | 
        
          | Thanks etorix |  
          | _________________
 Linux is evolution, not intelligent design - Linus Torvalds
 |  
         
	        |  |  | 
  
    |  | 
  
    |  | 
  
    |  | 
        
					| Titel:  Verfasst am: 18.10.2006, 00:26 Uhr |  | 
  
    | 
        
          | 
 
 Anmeldung: 28. Sep 2005
 Beiträge: 16
 Wohnort: Michigan, USA
 
 |  | 
        
          | Zitat: 
exploit only possible on pre-96xx-series drivers 
 Thanks for the info. How can we determine if our driver is one of those susceptible?
 |  
          |  |  
         
	        |  |  | 
  
    |  | 
  
    |  | 
  
    |  | 
        
					| Titel:  Verfasst am: 18.10.2006, 03:25 Uhr |  | 
  
    | 
        
          | Team Member 
  
  
 Anmeldung: 23. Dez 2003
 Beiträge: 109
 
 
 |  | 
        
          | Nvidia Driver For Linux v8774 and v8762 are subject to a buffer overflow bug 
 infobash -v3 , in a term, will show which driver youre on
 |  
          | _________________
 namu amida butsu
 |  
         
	        |  |  | 
  
    |  | 
  
    |  | 
  
    |  | 
        
					| Titel:  Verfasst am: 18.10.2006, 03:45 Uhr |  | 
  
    | 
        
          | 
  
 Anmeldung: 27. Jun 2005
 Beiträge: 258
 
 
 |  |  | 
  
    |  | 
  
    |  | 
  
    |  | 
        
					| Titel:  Verfasst am: 18.10.2006, 07:19 Uhr |  | 
  
    | 
        
          | 
 
 Anmeldung: 07. Jun 2006
 Beiträge: 31
 Wohnort: planet earth
 
 |  | 
        
          | I did  a upgrade to 1.0-9625..about 24 hr's ago. So far no vid lock's or strange stuff poping up...But I not gamer,, just do web and a little multi-media stuff.. |  
          |  |  
         
	        |  |  | 
  
    |  | 
  
    |  | 
  
    |  | 
        
					| Titel:  Verfasst am: 18.10.2006, 14:17 Uhr |  | 
  
    | 
        
          | 
 
 Anmeldung: 08. Dez 2005
 Beiträge: 300
 
 
 |  | 
        
          | 9626 is out now...so far no issues with this version as well. |  
          |  |  
         
	        |  |  | 
  
    |  | 
  
    |  | 
  
    |  | 
        
					| Titel:  Verfasst am: 19.10.2006, 00:30 Uhr |  | 
  
    | 
        
          | Team Member 
  
  
 Anmeldung: 23. Dez 2003
 Beiträge: 109
 
 
 |  | 
        
          | this is a 'proof-of-concept' exploit , apparently only possible on 8774 never actually seen in-the-wild
 but we like to take precautions, eh
 |  
          | _________________
 namu amida butsu
 |  
         
	        |  |  | 
  
    |  | 
  
    |  | 
  
    |  | 
        
					| Titel:  Verfasst am: 20.10.2006, 12:04 Uhr |  | 
  
    | 
        
          | 
  
 Anmeldung: 18. Apr 2006
 Beiträge: 17
 
 
 |  | 
        
          | How serious is this bug? How easy will hackers get into your machine?  Ofcourse they need some kind of access to your linux system, so is it really that serious?
 |  
          |  |  
         
	        |  |  | 
  
    |  | 
  
    |  | 
  
    |  | 
        
					| Titel:  Verfasst am: 20.10.2006, 12:18 Uhr |  | 
  
    | 
        
          | 
 
 Anmeldung: 17. Dez 2003
 Beiträge: 16809
 
 
 |  | 
        
          | Well just do: 
 update-scripts-kanotix.sh
 install-nvidia-debian.sh -c
 
 if you expericence problems use script without -c.
 |  
          |  |  
         
	        |  |  | 
  
    |  | 
  
    |  | 
  
    |  | 
        
					| Titel:  Verfasst am: 20.10.2006, 12:28 Uhr |  | 
  
    | 
        
          | 
 
 Anmeldung: 16. Aug 2004
 Beiträge: 1905
 
 
 |  | 
        
          | Browsing a website might be enough. |  
          |  |  
         
	        |  |  | 
  
    |  | 
  
    |  | 
  
    |  | 
        
					| Titel:  Verfasst am: 20.10.2006, 14:58 Uhr |  | 
  
    | 
        
          | 
  
 Anmeldung: 27. Jun 2005
 Beiträge: 258
 
 
 |  | 
        
          | nvidia just released a new, non-beta driver version, v8776, which is supposed to fix this bug. i installed that instead of the v9626 beta driver and it seems fine |  
          |  |  
         
	        |  |  | 
  
    |  | 
  
    |  | 
  
    |  | 
        
					| Titel:  Verfasst am: 20.10.2006, 18:40 Uhr |  | 
  
    | 
        
          | 
  
 Anmeldung: 29. Mar 2005
 Beiträge: 96
 Wohnort: Terra
 
 |  |  | 
  
    |  | 
  
    |  | 
  
    |  | 
        
					| Titel:  Verfasst am: 20.10.2006, 19:22 Uhr |  | 
  
    | 
        
          | 
  
 Anmeldung: 23. Feb 2006
 Beiträge: 45
 Wohnort: Adelaide, Australia
 
 |  | 
        
          | Zitat: 
What version of the driver is installed by using install-nvidia-debian.sh?
 
 I used the script about 30 minutes ago and it installed the latest driver, 8776.
 |  
          |  |  
         
	        |  |  | 
  
    |  | 
  
    |  | 
  
  
    |  |