1. Home
  2. CVE Database
  3. CVE-2011-0636
LOW · 2.1

CVE-2011-0636

The (1) cudaHostAlloc and (2) cuMemHostAlloc functions in the NVIDIA CUDA Toolkit 3.2 developer drivers for Linux 260.19.26, and possibly other versions, do not initialize pinned memory, which allows ...

Vulnerability Description

The (1) cudaHostAlloc and (2) cuMemHostAlloc functions in the NVIDIA CUDA Toolkit 3.2 developer drivers for Linux 260.19.26, and possibly other versions, do not initialize pinned memory, which allows local users to read potentially sensitive memory, such as file fragments during read or write operations.

CVSS Score

2.1

LOW

AV:L/AC:L/Au:N/C:P/I:N/A:N
Confidentiality
PARTIAL
Integrity
NONE
Availability
NONE

Affected Products

VendorProductVersions
NvidiaCuda Toolkit3.2

Related Weaknesses (CWE)

CWE-200

References

FAQ

What is CVE-2011-0636?

CVE-2011-0636 is a vulnerability with a CVSS score of 2.1 (LOW). The (1) cudaHostAlloc and (2) cuMemHostAlloc functions in the NVIDIA CUDA Toolkit 3.2 developer drivers for Linux 260.19.26, and possibly other versions, do not initialize pinned memory, which allows ...

How severe is CVE-2011-0636?

CVE-2011-0636 has been rated LOW with a CVSS base score of 2.1/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2011-0636?

Check the references section above for vendor advisories and patch information. Affected products include: Nvidia Cuda Toolkit.