SUSE-SU-2025:20327-1: important: Security update for nvidia-open-driver-G06-signed

[SLE-SECURITY-UPDATES]

# Security update for nvidia-open-driver-G06-signed

Announcement ID: SUSE-SU-2025:20327-1  
Release Date: May 15, 2025, 3:59 p.m.  
Rating: important  
References:

  * bsc#1235461
  * bsc#1235871
  * bsc#1236191
  * bsc#1236658
  * bsc#1236746
  * bsc#1237308
  * bsc#1237585
  * bsc#1239139
  * bsc#1239653
  * bsc#1241231
  * jsc#PED-2658
  * jsc#PED-7117

  
Cross-References:

  * CVE-2024-0131
  * CVE-2024-0147
  * CVE-2024-0149
  * CVE-2024-0150
  * CVE-2024-53869

  
CVSS scores:

  * CVE-2024-0131 ( SUSE ):  5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
  * CVE-2024-0131 ( NVD ):  4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H
  * CVE-2024-0147 ( SUSE ):  5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
  * CVE-2024-0147 ( NVD ):  5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
  * CVE-2024-0149 ( SUSE ):  3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
  * CVE-2024-0149 ( NVD ):  3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
  * CVE-2024-0150 ( SUSE ):  7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H
  * CVE-2024-0150 ( NVD ):  7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H
  * CVE-2024-53869 ( SUSE ):  5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
  * CVE-2024-53869 ( NVD ):  5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

  
Affected Products:

  * SUSE Linux Micro 6.1

  
  
An update that solves five vulnerabilities, contains two features and has five
fixes can now be installed.

## Description:

This update for nvidia-open-driver-G06-signed fixes the following issues:

Update CUDA variant to 570.133.20

Update non-CUDA variant to 570.144 (bsc#1241231)

Update non-CUDA variant to 570.133.07 (bsc#1239653)

  * removed obsolete kernel-firmware-nvidia-gspx-G06-cuda; firmware has moved to
    nvidia-common-G06 and kernel-firmware-nvidia-gspx-G06 is no longer available
    either (bsc#1239139)

Update CUDA variant to 570.124.06

Update non-CUDA variant to 570.124.04 (bsc#1237585)

Update non-CUDA variant to 570.124.02 (bsc#1237585)

In the module install path revert the order of the 'updates' subdirectory and
the package name & version. This satisfies the kmp dependency checker
(bsc#1237308).

update non-CUDA variant to 570.86.16 (bsc#1236658)

Update to 565.77

  * non-CUDA variant:
  * get rid of modprobe.d and dracut.d files and udev magic; instead require
    nvidia-common-G06
  * Supplements: switch to really supported devices; not only the initially
    supported ones without graphical output

update non-CUDA and CUDA variant to 570.86.15

  * preamble: let -cuda KMP conflict with no-cuda variants < 550.135
    (bsc#1236191)

Update to 550.144.03 (bsc#1235461, bsc#1235871)

  * fixes CVE-2024-0131, CVE-2024-0147, CVE-2024-0149, CVE-2024-0150,
    CVE-2024-53869

## Patch Instructions:

To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".  
Alternatively you can run the command listed for your product:

  * SUSE Linux Micro 6.1  
    zypper in -t patch SUSE-SLE-Micro-6.1-kernel-21=1

## Package List:

  * SUSE Linux Micro 6.1 (aarch64 x86_64)
    * nvidia-open-driver-G06-signed-cuda-kmp-default-570.133.20_k6.4.0_28-1.1
    * nvidia-open-driver-G06-signed-debugsource-570.144-1.1
    * nvidia-open-driver-G06-signed-cuda-debugsource-570.133.20-1.1
    * nvidia-open-driver-G06-signed-kmp-default-570.144_k6.4.0_28-1.1
    * nvidia-open-driver-G06-signed-kmp-default-debuginfo-570.144_k6.4.0_28-1.1
    * nvidia-open-driver-G06-signed-cuda-kmp-default-debuginfo-570.133.20_k6.4.0_28-1.1

## References:

  * https://www.suse.com/security/cve/CVE-2024-0131.html
  * https://www.suse.com/security/cve/CVE-2024-0147.html
  * https://www.suse.com/security/cve/CVE-2024-0149.html
  * https://www.suse.com/security/cve/CVE-2024-0150.html
  * https://www.suse.com/security/cve/CVE-2024-53869.html
  * https://bugzilla.suse.com/show_bug.cgi?id=1235461
  * https://bugzilla.suse.com/show_bug.cgi?id=1235871
  * https://bugzilla.suse.com/show_bug.cgi?id=1236191
  * https://bugzilla.suse.com/show_bug.cgi?id=1236658
  * https://bugzilla.suse.com/show_bug.cgi?id=1236746
  * https://bugzilla.suse.com/show_bug.cgi?id=1237308
  * https://bugzilla.suse.com/show_bug.cgi?id=1237585
  * https://bugzilla.suse.com/show_bug.cgi?id=1239139
  * https://bugzilla.suse.com/show_bug.cgi?id=1239653
  * https://bugzilla.suse.com/show_bug.cgi?id=1241231
  * https://jira.suse.com/browse/PED-2658
  * https://jira.suse.com/browse/PED-7117

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.suse.com/pipermail/sle-security-updates/attachments/20250528/a53111ff/attachment.htm>