Null Pointer Dereference Vulnerability in NVIDIA Linux Distributions
CVE-2021-34405

5.5MEDIUM

Key Information:

Vendor: Nvidia
Status: Shield Tv
Vendor: CVE Published:; 18 January 2022

What is CVE-2021-34405?

The NVIDIA Linux distributions contain a vulnerability in the TrustZone’s TEE_Malloc function that allows for an unchecked return value. This flaw can lead to a null pointer dereference, potentially resulting in a denial of service, affecting system stability and availability.

Affected Version(s)

SHIELD TV All versions prior to SE 9.0

References

https://nvidia.custhelp.com/app/answers/detail/a_id/5259

x_refsource_CONFIRM

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jan 18, 2022
Vulnerability Reserved
Jun 9, 2021

Nvidia

What is CVE-2021-34405?

Affected Version(s)

References

CVSS V3.1

Timeline