- Nvidia confirms a new bug in the container toolbox and the GPU operator
- The bug allows malicious actors to perform a distance code
- A fix has already been deployed, so patch now
The NVIDIA Container toolbox for Linux, a set of tools that allows developers to create and execute GPU accelerated containers using Docker, or other container executions, has a vulnerability that allows Threatening actors to access the host file system and thus execute a remote malware, run the denial of service attacks, increases privileges, steal sensitive information or alter the victim data.
The company has confirmed the news in a security advice, noting both the Nvidia Container toolbox and the NVIDIA GPU operator (a native Kubernetes solution which automates the deployment, management and monitoring of NVIDIA GPU resources in a cluster Kubernetes) are vulnerable to the GPU buckt in a Kubernetes cluster) are vulnerable to the GPU bucket in a Kubernetes cluster) are vulnerable to the bug which is followed as CVE-2025-23359.
He received a severity score of 8.3, and would have affected all versions of the container toolbox up to 1.17.3, and all versions up to 24.9.1 from the GPU operator.
GROUP OF PATCHS
The bugs were fixed in versions 1.17.4 and 24.9.2 respectively. It should also be mentioned that the flaw is only present on Linux and has no impact on use cases where the CDI is used.
Wiz cybersecurity researchers say it is in fact a bypass for another vulnerability. Apparently, the previous bug is followed as CVE-2024-0132, and has a 9.0 gravity score, which makes it critical, because it could allow malicious actors to mount the root system of the host in a container , granting them free access to practically anything. In addition, access can be used to launch privileged containers and obtain a complete compromise of the host.
NVIDIA says the problem was resolved in September 2024, and to resolve the problem, users are invited to apply the published fix and not to deactivate the flag “–o-Cntlibs” in production environments, A-T -We say.
Via The Hacker News
