Slashdot Mirror

← Back to Stories (view on slashdot.org)

Root Exploit For NVIDIA Closed-Source Linux Driver

Posted by ryuzaki0 on Monday October 16, 2006 @09:18AM from the dangerous-blobs dept.

possible writes, "KernelTrap is reporting that the security research firm Rapid7 has published a working root exploit for a buffer overflow in NVIDIA's binary blob graphics driver for Linux. The NVIDIA drivers for FreeBSD and Solaris are also likely vulnerable. This will no doubt fuel the debate about whether binary blob drivers should be allowed in Linux." Rapid7's suggested action to mitigate this vulnerability: "Disable the binary blob driver and use the open-source 'nv' driver that is included by default with X."

2 of 548 comments (clear)

Min score:

Reason:

Sort:

Re:useless suggestion by 0racle · 2006-10-16 10:24 · Score: 0, Flamebait

Is that so? That's not even the problem I was looking for, which also went from Linux 2.6 to at least as far back as 2.0. There are lots of spots of a OSS program that are not glamorous to fix so no one ever looks at them if they appear to be working.

--
"I use a Mac because I'm just better than you are."
Re:useless suggestion by Nimey · 2006-10-16 10:47 · Score: 0, Flamebait

Oh yes, brilliant! Let's have another abuse of the legal system, 'cause that's what it's there for.

Asshat.

--
Hail Eris, full of mischief...

E pluribus sanguinem