Vulnerability Description
NVIDIA Linux kernel distributions contain a vulnerability in FuSa Capture (VI/ISP), where integer underflow due to lack of input validation may lead to complete denial of service, partial integrity, and serious confidentiality loss for all processes in the system.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Nvidia | Jetson Linux | >= 32.1, < 32.6.1 |
| Nvidia | Jetson Agx Xavier | - |
| Nvidia | Jetson Nano | - |
| Nvidia | Jetson Nano 2Gb | - |
| Nvidia | Jetson Tx1 | - |
| Nvidia | Jetson Tx2 | - |
| Nvidia | Jetson Tx2 Nx | - |
| Nvidia | Jetson Xavier Nx | - |
| Nvidia | Shield Experience | < 9.0 |
| Nvidia | Shield Tv | - |
Related Weaknesses (CWE)
References
- https://nvidia.custhelp.com/app/answers/detail/a_id/5216Vendor Advisory
- https://nvidia.custhelp.com/app/answers/detail/a_id/5259Vendor Advisory
- https://nvidia.custhelp.com/app/answers/detail/a_id/5216Vendor Advisory
- https://nvidia.custhelp.com/app/answers/detail/a_id/5259Vendor Advisory
FAQ
What is CVE-2021-1108?
CVE-2021-1108 is a vulnerability with a CVSS score of 7.3 (HIGH). NVIDIA Linux kernel distributions contain a vulnerability in FuSa Capture (VI/ISP), where integer underflow due to lack of input validation may lead to complete denial of service, partial integrity, a...
How severe is CVE-2021-1108?
CVE-2021-1108 has been rated HIGH with a CVSS base score of 7.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2021-1108?
Check the references section above for vendor advisories and patch information. Affected products include: Nvidia Jetson Linux, Nvidia Jetson Agx Xavier, Nvidia Jetson Nano, Nvidia Jetson Nano 2Gb, Nvidia Jetson Tx1.