CVE-2014-8298 — Vulnetix

Try Vulnetix Request Demo

CVE-2014-8298 PUBLISHED

The NVIDIA Linux Discrete GPU drivers before R304.125, R331.x before R331.113, R340.x before R340.65, R343.x before R343.36, and R346.x before R346.22, Linux for Tegra (L4T) driver before R21.2, and Chrome OS driver before R40 allows remote attackers to cause a denial of service (segmentation fault and X server crash) or possibly execute arbitrary code via a crafted GLX indirect rendering protocol request.

EPSS 1.50% · 81.0th percentile

Risk Scores

EPSS Score

1.50%

81.0th percentile

Affected Products

Vendor	Product	Versions
Ubuntu:14.04:LTS	nvidia-graphics-drivers-304	0, 304.88-0ubuntu8, 304.88-0ubuntu9
Ubuntu:14.04:LTS	nvidia-graphics-drivers-331	331.38-0ubuntu7, 0, 331.20-0ubuntu1
Ubuntu:14.04:LTS	nvidia-graphics-drivers-304-updates	304.108-0ubuntu2, 304.108-0ubuntu3, 304.108-0ubuntu4
Ubuntu:14.04:LTS	nvidia-graphics-drivers-331-updates	331.20-0ubuntu1, 331.20-0ubuntu2, 331.20-0ubuntu3

Timeline

Dec 10, 2014 CVE Published
Feb 4, 2022 EPSS Score
Mar 28, 2022 EPSS Score
May 19, 2022 EPSS Score
Jul 10, 2022 EPSS Score
Oct 23, 2022 EPSS Score
Dec 14, 2022 EPSS Score
Feb 4, 2023 EPSS Score
Mar 7, 2023 EPSS Score
Mar 28, 2023 EPSS Score
May 19, 2023 EPSS Score
Jul 10, 2023 EPSS Score

References

https://ubuntu.com/security/CVE-2014-8298 third-party-advisory
http://nvidia.custhelp.com/app/answers/detail/a_id/3610/kw/3610 third-party-advisory
https://ubuntu.com/security/notices/USN-2438-1 vendor-advisory
https://www.cve.org/CVERecord?id=CVE-2014-8298 third-party-advisory

Open in Interactive Console →