NVIDIA Fixes High-Risk GPU Driver Vulnerabilities That Allow Code Execution and Data Theft

AleksandarK · Jan 20, 2025

NVIDIA has released urgent security patches addressing eight vulnerabilities in its GPU drivers and virtual GPU software that affect both Windows and Linux systems. The January 16 update targets multiple security flaws that could enable attackers with local access to execute malicious code, steal data, or crash affected systems. Two high-severity vulnerabilities stand out among the patches. The first (CVE-2024-0150) involves a buffer overflow in the GPU display driver that could lead to system compromise through data tampering and information disclosure. The second critical issue (CVE-2024-0146) affects the virtual GPU Manager, where a compromised guest system could trigger memory corruption, potentially leading to code execution and system takeover. For Windows systems, users must update to version 553.62 (R550 branch) or 539.19 (R535 branch). Linux users need to install version 550.144.03 or 535.230.02, depending on their driver branch.

The updates cover NVIDIA's RTX, Quadro, NVS, and Tesla product lines. Enterprise environments using NVIDIA's virtualization technology face additional risks. One vulnerability (CVE-2024-53881) allows guest systems to launch interrupt storms against host machines, potentially causing system-wide outages. To patch these security holes, virtual GPU software users must update to version 17.5 (550.144.02) or 16.9 (535.230.02). The vulnerabilities specifically target systems where attackers have local access, which means remote exploitation is unlikely. However, in virtualized environments where multiple users share GPU resources, these flaws pose a significant security risk. System administrators can download the security updates from NVIDIA's Driver Downloads page, while enterprise vGPU customers should obtain patches through the NVIDIA Licensing Portal. NVIDIA recommends immediate installation of these updates across all affected systems.

View at TechPowerUp Main Site | Source

Vya Domus · Jan 20, 2025

Don't want anyone getting their hands on that data other than Nvidia themselves.

Mistral · Jan 20, 2025

To rephrase the title a little, "nVidia Had a Driver Vulnerabilities That Allow Code Execution and Data Theft" for how long exactly?

bug · Jan 20, 2025

Mistral said:
To rephrase the title a little, "nVidia Had a Driver Vulnerabilities That Allow Code Execution and Data Theft" for how long exactly?

Exploitable if an attacker has localhost access. If you were bitten by that, you have bigger issues than Nvidia's driver.

TumbleGeorge · Jan 20, 2025

Is it just me that it seems like Nvidia just reduced the gaming performance of its old series of video cards to make the new RTX 50 series stand out even more compared to them.?

Onasi · Jan 20, 2025

@TumbleGeorge
Yes, it’s the maintenance man. He knows I like orange. They do that on purpose.

bug · Jan 20, 2025

TumbleGeorge said:
Is it just me that it seems like Nvidia just reduced the gaming performance of its old series of video cards to make the new RTX 50 series stand out even more compared to them.?

It's just you.
Where did you see the performance reduced?

TumbleGeorge · Jan 20, 2025

bug said:
It's just you.
Where did you see the performance reduced?

I just ask.

Vayra86 · Jan 20, 2025

TumbleGeorge said:
Is it just me that it seems like Nvidia just reduced the gaming performance of its old series of video cards to make the new RTX 50 series stand out even more compared to them.?

Well no, something tipped you off on thinking that, right? You say it seems like.
I can accuse Nvidia of a lot, but purposely killing their own cards over time isn't one, despite all the doom and gloom stories that we've seen over time, and the supposed gap with AMD's fine wine approach that never materialized in earnest.

danc · Jan 20, 2025

I cant find these on nvidia site?

The Norwegian Drone Pilot · Jan 20, 2025

Isn't we already in the 566.xx driver release that is way newer?

R-T-B · Jan 20, 2025

bug said:
Exploitable if an attacker has localhost access. If you were bitten by that, you have bigger issues than Nvidia's driver.

Or are a virtualization host, which is exactly what the vulnerable driver is for.

The Norwegian Drone Pilot said:
Isn't we already in the 566.xx driver release that is way newer?

This is for their paravirtualized enterprise driver for VMs. None of you are getting it.

igormp · Jan 20, 2025

R-T-B said:
Or are a virtualization host, which is exactly what the vulnerable driver is for.

This is for their paravirtualized enterprise driver for VMs. None of you are getting it.

Yeah, since it's mostly for their display part and the vGPU one, that's more related to systems that do multi-tenant out of a single GPU, stuff like their GRID offerings, or any other VDI solution people may be using.

kondamin · Jan 20, 2025

566.36 is what's being offered on the nvidia app thingy for me atleast.
It's been out since december 5th

Not that keen on keeping things i can patch unpached so what's up?

Dr. Dro · Jan 20, 2025

kondamin said:
566.36 is what's being offered on the nvidia app thingy for me atleast.
It's been out since december 5th

Not that keen on keeping things i can patch unpached so what's up?

It does not apply to you on GeForce, these are for NVIDIA RTX GPUs (formerly Quadro). I have been running 553.50 on my RTX A2000 since I got it last week. Just upgrading to 553.62 now after reading this post.

Driver Details | NVIDIA

Download the <dd~LanguageName> <dd~Name> for <dd~OSName> systems. Released <dd~ReleaseDateTime>

www.nvidia.com

They've also patched the previous Release 535 driver:

Driver Details | NVIDIA

Download the <dd~LanguageName> <dd~Name> for <dd~OSName> systems. Released <dd~ReleaseDateTime>

www.nvidia.com

_roman_ · Jan 20, 2025

Here you go.

Linux KERNEL + userspace + nvidia driver = insecure system

Mistral said:
To rephrase the title a little, "nVidia Had a Driver Vulnerabilities That Allow Code Execution and Data Theft" for how long exactly?

It depends if the user is smart or not.

Linux users need to install version 550.144.03 or 535.230.02, depending on their driver branch.

I think that statement misses an information. Gentoo linux has another newer version also in the repository. Is that also affected? According to the text it is, becuase it does not say ... "or newer".

source: https://packages.gentoo.org/packages/x11-drivers/nvidia-drivers/changelog

x11-drivers/nvidia-drivers: add 550.144.03
3dd0860
Ionen Wolkens committed on 2025-01-16 17:34:24 UTC

x11-drivers/nvidia-drivers: add 535.230.02
2e117da
Ionen Wolkens committed on 2025-01-16 17:34:24 UTC

That does not look very good - a few days only. And already an annoucement for the issue.

On a sidenote: Nvidia is not really a recommendation for a box with a linux kernel. Lot'S of overhead. I tested it for a few months again in 2023.

kondamin · Jan 20, 2025

Dr. Dro said:
It does not apply to you on GeForce, these are for NVIDIA RTX GPUs (formerly Quadro). I have been running 553.50 on my RTX A2000 since I got it last week. Just upgrading to 553.62 now after reading this post.

Driver Details | NVIDIA

Download the <dd~LanguageName> <dd~Name> for <dd~OSName> systems. Released <dd~ReleaseDateTime>

www.nvidia.com

They've also patched the previous Release 535 driver:

Driver Details | NVIDIA

Download the <dd~LanguageName> <dd~Name> for <dd~OSName> systems. Released <dd~ReleaseDateTime>

www.nvidia.com

Ah, thanks for the clarification

System Name	Good enough
Processor	AMD Ryzen R9 7900 - Alphacool Eisblock XPX Aurora Edge
Motherboard	ASRock B650 Pro RS
Cooling	2x 360mm NexXxoS ST30 X-Flow, 1x 360mm NexXxoS ST30, 1x 240mm NexXxoS ST30
Memory	32GB - FURY Beast RGB 5600 Mhz
Video Card(s)	Sapphire RX 7900 XT - Alphacool Eisblock Aurora
Storage	1x Kingston KC3000 1TB 1x Kingston A2000 1TB, 1x Samsung 850 EVO 250GB , 1x Samsung 860 EVO 500GB
Display(s)	LG UltraGear 32GN650-B + 4K Samsung TV
Case	Phanteks NV7
Power Supply	GPS-750C

System Name	Aryzen / Sairikiki / Tesseract
Processor	5800x / i7 920@3.73 / 5800x
Motherboard	Steel Legend B450M / GB EX58-UDP4 / Steel Legend B550M
Cooling	Mugen 5 / Pure Rock / Glacier One 240
Memory	Corsair Something 16 / Corsair Something 12 / G.Skill 32
Video Card(s)	AMD 6800XT / AMD 6750XT / Sapphire 7800XT
Storage	Way too many drives...
Display(s)	LG 332GP850-B / Sony w800b / Sony X90J
Case	EVOLV X / Carbide 540 / Carbide 280x
Audio Device(s)	SB ZxR + GSP 500 / board / Denon X1700h + ELAC Uni-Fi 2 + Senn 6XX
Power Supply	Seasonic PRIME GX-750 / Corsair HX750 / Seasonic Focus PX-650
Mouse	G700 / none / G602
Keyboard	G910
Software	w11 64
Benchmark Scores	I don't play benchmarks...

Processor	Intel i5-12600k
Motherboard	Asus H670 TUF
Cooling	Arctic Freezer 34
Memory	2x16GB DDR4 3600 G.Skill Ripjaws V
Video Card(s)	EVGA GTX 1060 SC
Storage	500GB Samsung 970 EVO, 500GB Samsung 850 EVO, 1TB Crucial MX300 and 2TB Crucial MX500
Display(s)	Dell U3219Q + HP ZR24w
Case	Raijintek Thetis
Audio Device(s)	Audioquest Dragonfly Red :D
Power Supply	Seasonic 620W M12
Mouse	Logitech G502 Proteus Core
Keyboard	G.Skill KM780R
Software	Arch Linux + Win10

System Name	The Workhorse
Processor	AMD Ryzen R9 5900X
Motherboard	Gigabyte Aorus B550 Pro
Cooling	CPU - Noctua NH-D15S Case - 3 Noctua NF-A14 PWM at the bottom, 2 Fractal Design 180mm at the front
Memory	GSkill Trident Z 3200CL14
Video Card(s)	NVidia GTX 1070 MSI QuickSilver
Storage	Adata SX8200Pro
Display(s)	LG 32GK850G
Case	Fractal Design Torrent (Solid)
Audio Device(s)	FiiO E-10K DAC/Amp, Samson Meteorite USB Microphone
Power Supply	Corsair RMx850 (2018)
Mouse	Razer Viper (Original) on a X-Raypad Equate Plus V2
Keyboard	Cooler Master QuickFire Rapid TKL keyboard (Cherry MX Black)
Software	Windows 11 Pro (24H2)

Processor	Intel i5-12600k
Motherboard	Asus H670 TUF
Cooling	Arctic Freezer 34
Memory	2x16GB DDR4 3600 G.Skill Ripjaws V
Video Card(s)	EVGA GTX 1060 SC
Storage	500GB Samsung 970 EVO, 500GB Samsung 850 EVO, 1TB Crucial MX300 and 2TB Crucial MX500
Display(s)	Dell U3219Q + HP ZR24w
Case	Raijintek Thetis
Audio Device(s)	Audioquest Dragonfly Red :D
Power Supply	Seasonic 620W M12
Mouse	Logitech G502 Proteus Core
Keyboard	G.Skill KM780R
Software	Arch Linux + Win10

System Name	Tiny the White Yeti
Processor	7800X3D
Motherboard	MSI MAG Mortar b650m wifi
Cooling	CPU: Thermalright Peerless Assassin / Case: Phanteks T30-120 x3
Memory	32GB Corsair Vengeance 30CL6000
Video Card(s)	ASRock RX7900XT Phantom Gaming
Storage	Lexar NM790 4TB + Samsung 850 EVO 1TB + Samsung 980 1TB + Crucial BX100 250GB
Display(s)	Gigabyte G34QWC (3440x1440)
Case	Lian Li A3 mATX White
Audio Device(s)	Harman Kardon AVR137 + 2.1
Power Supply	EVGA Supernova G2 750W
Mouse	Steelseries Aerox 5
Keyboard	Lenovo Thinkpad Trackpoint II
VR HMD	HD 420 - Green Edition ;)
Software	W11 IoT Enterprise LTSC
Benchmark Scores	Over 9000

System Name	Dark Matter / Mørk Materie (In Norwegian)
Processor	AMD Ryzen 7 7700 (CPU Core Ratio: 'AI Enhanced' & OC: 'Curve Optimizer' @ -40 & 'PBO2' @ +200 MHz)
Motherboard	ASUS ROG Strix B650E-I Gaming WiFi (AMD Socket AM5) (Mini-ITX)
Cooling	CPU: EK Waterblocks EK-Nucleus AIO CR240 Lux (D-RGB) & Thermal Grizzly AM5 Contact & Sealing Frame
Memory	Corsair Vengeance RGB Black DDR5 6000 MHz (PC5-48000) 2x16GB (AMD EXPO) (CL36 tuned to CL30 @ 1.4v)
Video Card(s)	ASUS TUF Gaming GeForce RTX 3060 Ti 8GB V2 OC Edition (Overclocked +190 MHz Core @ +800 Mhz Memory)
Storage	1x Samsung 990 Pro 2TB & 1x Samsung 990 Pro 4TB (Both PCIe 4.0 M.2 SSDs)
Display(s)	Dell S3220DGF (1800R Curved, VA Panel & 165 Hz Refresh Rate)
Case	Phanteks Evolv Shift XT D-RGB (Black) (Modular)
Audio Device(s)	ASUS ROG SupremeFX (Realtek ALC4080 Codec & Savitech SV3H712 Amplifier) (On Motherboard)
Power Supply	Corsair SF600 Platinum (600w) (Modular) (SFX)
Mouse	Logitech MX Anywhere 3S (Graphite)
Keyboard	Logitech MX Keys Mini (Nordic) (Grey)
Software	Microsoft Windows 11 Home (64-bit) (Norwegian)
Benchmark Scores	Cinebench R23: 20.130 (Multi Core) (Single Cycle Run).

System Name	Pioneer
Processor	Ryzen 9 9950X
Motherboard	MSI MAG X670E Tomahawk Wifi
Cooling	Noctua NH-D15 + A whole lotta Sunon, Phanteks and Corsair Maglev blower fans...
Memory	128GB (4x 32GB) G.Skill Flare X5 @ DDR5-4200(Running 1:1:1 w/FCLK)
Video Card(s)	XFX RX 7900 XTX Speedster Merc 310
Storage	Intel 5800X Optane 800GB boot, +2x Crucial P5 Plus 2TB PCIe 4.0 NVMe SSDs, 1x 2TB Seagate Exos 3.5"
Display(s)	55" LG 55" B9 OLED 4K Display
Case	Thermaltake Core X31
Audio Device(s)	TOSLINK->Schiit Modi MB->Asgard 2 DAC Amp->AKG Pro K712 Headphones or HDMI->B9 OLED
Power Supply	FSP Hydro Ti Pro 850W
Mouse	Logitech G305 Lightspeed Wireless
Keyboard	WASD Code v3 with Cherry Green keyswitches + PBT DS keycaps
Software	Gentoo Linux x64, other office machines run Windows 11 Enterprise

Processor	5950x
Motherboard	B550 ProArt
Cooling	Fuma 2
Memory	4x32GB 3200MHz Corsair LPX
Video Card(s)	2x RTX 3090
Display(s)	LG 42" C2 4k OLED
Power Supply	XPG Core Reactor 850W
Software	I use Arch btw

Processor	13th Gen Intel Core i9-13900KS
Motherboard	ASUS ROG Maximus Z790 Apex Encore
Cooling	Pichau Lunara ARGB 360 + Honeywell PTM7950
Memory	32 GB G.Skill Trident Z5 RGB @ 7600 MT/s
Video Card(s)	Palit GameRock GeForce RTX 5090 32 GB
Storage	500 GB WD Black SN750 + 4x 300 GB WD VelociRaptor WD3000HLFS HDDs
Display(s)	55-inch LG G3 OLED
Case	Cooler Master MasterFrame 700 benchtable
Power Supply	EVGA 1300 G2 1.3kW 80+ Gold
Mouse	Microsoft Classic IntelliMouse
Keyboard	IBM Model M type 1391405
Software	Windows 10 Pro 22H2

NVIDIA Fixes High-Risk GPU Driver Vulnerabilities That Allow Code Execution and Data Theft

News Editor