CVE-2006-5379

Description

The accelerated rendering functionality of NVIDIA Binary Graphics Driver (binary blob driver) For Linux v8774 and v8762, and probably on other operating systems, allows local and remote attackers to execute arbitrary code via a large width value in a font glyph, which can be used to overwrite arbitrary memory locations.

How to fix CVE-2006-5379

To remediate CVE-2006-5379, upgrade the affected package to a fixed version below.

• Debian/nvidia-graphics-drivers—upgrade to 1.0.8776-1 or later

Is CVE-2006-5379 being exploited?

Moderate — EPSS is 36.5%. Track this CVE but it's not at the top of the prioritisation list.

Affected packages (1)

• from 0, < 1.0.8776-1

References (1)

• ADVISORYsecurity-tracker.debian.org/tracker/CVE-2006-5379