CVE-2012-0952
5.0
MEDIUM
CVSS 3.1
EPSS 0.06%
Description
A heap buffer overflow was discovered in the device control ioctl in the Linux driver for Nvidia graphics cards, which may allow an attacker to overflow 49 bytes. This issue was fixed in version 295.53.
How to fix CVE-2012-0952
To remediate CVE-2012-0952, upgrade the affected package to a fixed version below.
- Debian/nvidia-graphics-drivers—upgrade to 295.53-1 or later
Is CVE-2012-0952 being exploited?
Low — EPSS is 0.1%, meaning exploitation activity has not been observed at scale.
Affected packages (1)
- from 0, < 295.53-1
CVSS scores
| Source | Version | Severity | Vector |
|---|---|---|---|
| osv | CVSS 3.1 | MEDIUM5.0 | CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:L |