A number of security updates will also come with this week’s release of the R460 driver. Several security vulnerabilities have been fixed in both the NVIDIA Windows and Linux graphics driver components.
The Set of 2021 CVEs “resolves issues that could lead to denial of service, privilege escalation, data tampering, or information disclosure.”
Vulnerabilities include a kernel ioctl that allows users to access legacy privileged APIs in user mode, the kernel driver that does not fully respect file system permissions for GPU isolation at the device level, and a number of other vulnerabilities in vGPU software.
The Linux driver vulnerabilities have been fixed in 460.32.03 / 450.102.04, while an older Linux driver update is expected in about a week to fix the issues there.
More information about these NVIDIA graphics driver vulnerabilities can be found in the NVIDIA help section.