danfe 2012-05-10 11:22:00 UTC FreeBSD ports repository Modified files: x11/nvidia-driver Makefile x11/nvidia-driver-173 Makefile Added files: x11/nvidia-driver/files security-patch-CVE-2012-0946 Log: Provide home-made patch for legacy nVidia drivers against recent arbitrary memory access vulnerability. While affected underlying code is very similar in all released drivers, and they all are technically exploitable the same way, the exploit relies on hardware that is not present in GPUs older than NV50/G80, hence versions starting from 100.14.03 must be patched. That said, while the patch does apply to all legacy versions, port revision bump makes sense only for 173.14.xx series (as 96.43.xx and 71.86.xx do not hardware exploit relies upon). Discussed with: Christian Zander Security: CVE-2012-0946 Revision Changes Path 1.12 +1 -0 ports/x11/nvidia-driver-173/Makefile 1.117 +4 -0 ports/x11/nvidia-driver/Makefile 1.1 +28 -0 ports/x11/nvidia-driver/files/security-patch-CVE-2012-0946 (new) _______________________________________________ cvs-all@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/cvs-all To unsubscribe, send any mail to "cvs-all-unsubscribe@freebsd.org"