NVIDIA driver CVE-2015-5950

Any progress on getting packages Alberto?

This bug was fixed in the package nvidia-graphics-drivers-304 - 304.128-0ubuntu0.0.1

---------------
nvidia-graphics-drivers-304 (304.128-0ubuntu0.0.1) trusty-security; urgency=medium

  [ Alberto Milone ]
  * debian/templates/dkms.conf.in:
    - Drop patches for Linux 3.19 and 4.0.
  * New upstream release:
    - Removed libvdpau and libvdpau_trace from the NVIDIA driver
      package. VDPAU is not supported on the legacy hardware
      supported on the release 304 legacy driver branch. The
      libvdpau_nvidia vendor library is still included, so users who
      wish to use VDPAU with newer hardware that still works with
      release 304 drivers may install libvdpau from packages provided
      by the OS vendor where available, or from the source code
      available at:
      http://people.freedesktop.org/~aplattner/vdpau/
  * SECURITY UPDATE:
    - CVE-2015-5950 (LP: #1489391).

 -- Alberto Milone <email address hidden> Wed, 16 Sep 2015 16:55:41 +0200

This bug was fixed in the package nvidia-graphics-drivers-340 - 340.93-0ubuntu0.0.0.1

---------------
nvidia-graphics-drivers-340 (340.93-0ubuntu0.0.0.1) precise-security; urgency=medium

  * Initial release (replaces nvidia-graphics-drivers-331).
  * SECURITY UPDATE:
    - CVE-2015-5950 (LP: #1489391).

 -- Alberto Milone <email address hidden> Thu, 27 Aug 2015 16:35:39 +0200

This bug was fixed in the package nvidia-graphics-drivers-340 - 340.93-0ubuntu0.0.1

---------------
nvidia-graphics-drivers-340 (340.93-0ubuntu0.0.1) trusty-security; urgency=medium

  [ Alberto Milone ]
  * New upstream release:
    - Fixed a bug that caused the X server to crash if an OpenGL
      application tried to allocate a drawable when GPU-accessible
      memory is exhausted.
    - Fixed a bug that could cause an Xid error when terminating a
      video playback application using the overlay presentation queue
      in VDPAU.
    - Fixed a rare deadlock condition when running applications that
      use OpenGL in multiple threads on a Quadro GPU.
    - Fixed a kernel memory leak that occurred when looping hardware-
      accelerated video decoding with VDPAU on Maxwell-based GPUs.
    - Fixed a bug that caused the X server to crash if a RandR 1.4
      output provided by a SinkOutput provider was selected as the
      primary output on X.Org xserver 1.17 and higher.
    - Fixed a bug that caused waiting on X Sync Fence objects in
      OpenGL to hang indefinitely in some cases.
    - Fixed a bug that prevented OpenGL from properly recovering from
      hardware errors or sync object waits that had timed out.
  * SECURITY UPDATE:
    - CVE-2015-5950 (LP: #1489391).

 -- Alberto Milone <email address hidden> Thu, 27 Aug 2015 15:45:03 +0200

This bug was fixed in the package nvidia-graphics-drivers-346 - 346.96-0ubuntu0.0.1

---------------
nvidia-graphics-drivers-346 (346.96-0ubuntu0.0.1) trusty-security; urgency=medium

  [ Alberto Milone ]
  * New upstream release:
   - Added support for the following GPU:
     o Tesla K80
   - Fixed a bug that caused the X server to crash if an
     OpenGL application tried to allocate a drawable when
     GPU-accessible memory is exhausted.
  * SECURITY UPDATE:
    - CVE-2015-5950 (LP: #1489391).

 -- Alberto Milone <email address hidden> Thu, 27 Aug 2015 15:04:46 +0200

This bug was fixed in the package nvidia-graphics-drivers-304 - 304.128-0ubuntu0.0.0.1

---------------
nvidia-graphics-drivers-304 (304.128-0ubuntu0.0.0.1) precise-security; urgency=medium

  [ Alberto Milone ]
  * New upstream release:
    - Removed libvdpau and libvdpau_trace from the NVIDIA driver
      package. VDPAU is not supported on the legacy hardware
      supported on the release 304 legacy driver branch. The
      libvdpau_nvidia vendor library is still included, so users who
      wish to use VDPAU with newer hardware that still works with
      release 304 drivers may install libvdpau from packages provided
      by the OS vendor where available, or from the source code
      available at:
      http://people.freedesktop.org/~aplattner/vdpau/
  * SECURITY UPDATE:
    - CVE-2015-5950 (LP: #1489391).

 -- Alberto Milone <email address hidden> Wed, 16 Sep 2015 16:43:44 +0200

This bug was fixed in the package nvidia-graphics-drivers-304 - 304.128-0ubuntu0.1

---------------
nvidia-graphics-drivers-304 (304.128-0ubuntu0.1) vivid-security; urgency=medium

  [ Alberto Milone ]
  * debian/templates/dkms.conf.in:
    - Drop patch for Linux 3.19.
  * New upstream release:
    - Removed libvdpau and libvdpau_trace from the NVIDIA driver
      package. VDPAU is not supported on the legacy hardware
      supported on the release 304 legacy driver branch. The
      libvdpau_nvidia vendor library is still included, so users who
      wish to use VDPAU with newer hardware that still works with
      release 304 drivers may install libvdpau from packages provided
      by the OS vendor where available, or from the source code
      available at:
      http://people.freedesktop.org/~aplattner/vdpau/
  * SECURITY UPDATE:
    - CVE-2015-5950 (LP: #1489391).

 -- Alberto Milone <email address hidden> Wed, 16 Sep 2015 17:02:40 +0200

This bug was fixed in the package nvidia-graphics-drivers-340 - 340.93-0ubuntu0.1

---------------
nvidia-graphics-drivers-340 (340.93-0ubuntu0.1) vivid-security; urgency=medium

  [ Alberto Milone ]
  * New upstream release:
    - Fixed a bug that caused the X server to crash if an OpenGL
      application tried to allocate a drawable when GPU-accessible
      memory is exhausted.
    - Fixed a bug that could cause an Xid error when terminating a
      video playback application using the overlay presentation queue
      in VDPAU.
    - Fixed a rare deadlock condition when running applications that
      use OpenGL in multiple threads on a Quadro GPU.
    - Fixed a kernel memory leak that occurred when looping hardware-
      accelerated video decoding with VDPAU on Maxwell-based GPUs.
    - Fixed a bug that caused the X server to crash if a RandR 1.4
      output provided by a SinkOutput provider was selected as the
      primary output on X.Org xserver 1.17 and higher.
    - Fixed a bug that caused waiting on X Sync Fence objects in
      OpenGL to hang indefinitely in some cases.
    - Fixed a bug that prevented OpenGL from properly recovering from
      hardware errors or sync object waits that had timed out.
  * SECURITY UPDATE:
    - CVE-2015-5950 (LP: #1489391).

 -- Alberto Milone <email address hidden> Thu, 27 Aug 2015 14:58:17 +0200

This bug was fixed in the package nvidia-graphics-drivers-346 - 346.96-0ubuntu0.1

---------------
nvidia-graphics-drivers-346 (346.96-0ubuntu0.1) vivid-security; urgency=medium

  [ Alberto Milone ]
  * New upstream release:
   - Added support for the following GPU:
     o Tesla K80
   - Fixed a bug that caused the X server to crash if an
     OpenGL application tried to allocate a drawable when
     GPU-accessible memory is exhausted.
  * SECURITY UPDATE:
    - CVE-2015-5950 (LP: #1489391).

 -- Alberto Milone <email address hidden> Thu, 27 Aug 2015 14:46:29 +0200