CVE-2025-33219

Public on 2026-01-28
Modified on 2026-02-19
Description
NVIDIA Display Driver for Linux contains a vulnerability in the NVIDIA kernel module where an attacker could cause an integer overflow or wraparound. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, data tampering, denial of service, or information disclosure.
Severity
Important severity
Important
See what this means
CVSS v3 Base Score
7.8
See breakdown

Affected Packages

Platform Package Release Date Advisory Status
Amazon Linux 2023 cuda-compat 2026-02-18 ALAS2023NVIDIA-2026-275 Fixed
Amazon Linux 2023 cuda-drivers 2026-02-18 ALAS2023NVIDIA-2026-274 Fixed
Amazon Linux 2023 kmod-nvidia-latest-dkms 2026-02-18 ALAS2023NVIDIA-2026-273 Fixed
Amazon Linux 2023 kmod-nvidia-open-dkms 2026-02-18 ALAS2023NVIDIA-2026-272 Fixed
Amazon Linux 2023 libnvidia-nscq 2026-02-18 ALAS2023NVIDIA-2026-270 Fixed
Amazon Linux 2023 libnvsdm 2026-02-18 ALAS2023NVIDIA-2026-269 Fixed
Amazon Linux 2023 nvidia-driver 2026-02-18 ALAS2023NVIDIA-2026-271 Fixed
Amazon Linux 2023 nvidia-fabricmanager 2026-02-18 ALAS2023NVIDIA-2026-268 Fixed
Amazon Linux 2023 nvidia-imex 2026-02-18 ALAS2023NVIDIA-2026-267 Fixed
Amazon Linux 2023 nvidia-kmod-common 2026-02-18 ALAS2023NVIDIA-2026-266 Fixed
Amazon Linux 2023 nvidia-modprobe 2026-02-18 ALAS2023NVIDIA-2026-264 Fixed
Amazon Linux 2023 nvidia-open 2026-02-18 ALAS2023NVIDIA-2026-263 Fixed
Amazon Linux 2023 nvidia-persistenced 2026-02-18 ALAS2023NVIDIA-2026-262 Fixed
Amazon Linux 2023 nvidia-settings 2026-02-18 ALAS2023NVIDIA-2026-265 Fixed
Amazon Linux 2023 nvidia-xconfig 2026-02-18 ALAS2023NVIDIA-2026-261 Fixed
Amazon Linux 2023 nvlink5 2026-02-18 ALAS2023NVIDIA-2026-259 Fixed
Amazon Linux 2023 nvlink5-580 2026-02-18 ALAS2023NVIDIA-2026-260 Fixed

CVSS Scores

Score Type Score Vector
Amazon Linux CVSSv3 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

References

FAQs regarding Amazon Linux ALAS/CVE Severity Red Hat: CVE-2025-33219 Mitre: CVE-2025-33219