Integer Overflow or Wraparound
CVE-2022-42258
Summary
NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel mode layer (nvidia.ko), where an integer overflow may lead to denial of service, data tampering, or information disclosure.
- LOW
- LOCAL
- LOW
- UNCHANGED
- NONE
- LOW
- HIGH
- HIGH
CWE-190 - Integer Overflow or Wraparound
The software performs a calculation that can produce an integer overflow or wraparound, when the logic assumes that the resulting value will always be larger than the original value. This can introduce other weaknesses when the calculation is used for resource management or execution control.
References
Advisory Timeline
- Published