Medium severity4.1NVD Advisory· Published Nov 5, 2024· Updated Jun 17, 2026
CVE-2024-0134
CVE-2024-0134
Description
NVIDIA Container Toolkit and NVIDIA GPU Operator for Linux contain a UNIX vulnerability where a specially crafted container image can lead to the creation of unauthorized files on the host. The name and location of the files cannot be controlled by an attacker. A successful exploit of this vulnerability might lead to data tampering.
Affected products
47- osv-coords43 versionspkg:apk/chainguard/nvidia-container-toolkitpkg:apk/chainguard/nvidia-container-toolkit-containerdpkg:apk/chainguard/nvidia-container-toolkit-criopkg:apk/chainguard/nvidia-container-toolkit-dockerpkg:apk/chainguard/nvidia-container-toolkit-nvidia-cdi-hookpkg:apk/chainguard/nvidia-container-toolkit-nvidia-container-runtimepkg:apk/chainguard/nvidia-container-toolkit-nvidia-container-runtime-cdipkg:apk/chainguard/nvidia-container-toolkit-nvidia-container-runtime-hookpkg:apk/chainguard/nvidia-container-toolkit-nvidia-container-runtime-legacypkg:apk/chainguard/nvidia-container-toolkit-nvidia-ctkpkg:apk/chainguard/nvidia-container-toolkit-nvidia-ctk-installerpkg:apk/chainguard/nvidia-container-toolkit-nvidia-toolkitpkg:apk/chainguard/nvidia-container-toolkit-operatorpkg:apk/chainguard/nvidia-container-toolkit-toolkitpkg:apk/wolfi/nvidia-container-toolkitpkg:apk/wolfi/nvidia-container-toolkit-containerdpkg:apk/wolfi/nvidia-container-toolkit-criopkg:apk/wolfi/nvidia-container-toolkit-dockerpkg:apk/wolfi/nvidia-container-toolkit-nvidia-cdi-hookpkg:apk/wolfi/nvidia-container-toolkit-nvidia-container-runtimepkg:apk/wolfi/nvidia-container-toolkit-nvidia-container-runtime-cdipkg:apk/wolfi/nvidia-container-toolkit-nvidia-container-runtime-hookpkg:apk/wolfi/nvidia-container-toolkit-nvidia-container-runtime-legacypkg:apk/wolfi/nvidia-container-toolkit-nvidia-ctkpkg:apk/wolfi/nvidia-container-toolkit-nvidia-ctk-installerpkg:apk/wolfi/nvidia-container-toolkit-nvidia-toolkitpkg:apk/wolfi/nvidia-container-toolkit-operatorpkg:apk/wolfi/nvidia-container-toolkit-toolkitpkg:rpm/opensuse/nvidia-container-toolkit&distro=openSUSE%20Leap%2015.6pkg:rpm/suse/nvidia-container-toolkit&distro=SUSE%20Enterprise%20Storage%207.1pkg:rpm/suse/nvidia-container-toolkit&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP3-LTSSpkg:rpm/suse/nvidia-container-toolkit&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-ESPOSpkg:rpm/suse/nvidia-container-toolkit&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-LTSSpkg:rpm/suse/nvidia-container-toolkit&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP5-ESPOSpkg:rpm/suse/nvidia-container-toolkit&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP5-LTSSpkg:rpm/suse/nvidia-container-toolkit&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Containers%2015%20SP6pkg:rpm/suse/nvidia-container-toolkit&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Containers%2015%20SP7pkg:rpm/suse/nvidia-container-toolkit&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP3-LTSSpkg:rpm/suse/nvidia-container-toolkit&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP4-LTSSpkg:rpm/suse/nvidia-container-toolkit&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP5-LTSSpkg:rpm/suse/nvidia-container-toolkit&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP3pkg:rpm/suse/nvidia-container-toolkit&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP4pkg:rpm/suse/nvidia-container-toolkit&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP5
< 1.17.4-r0+ 42 more
- (no CPE)range: < 1.17.4-r0
- (no CPE)range: < 1.17.4-r0
- (no CPE)range: < 1.17.4-r0
- (no CPE)range: < 1.17.4-r0
- (no CPE)range: < 1.17.4-r0
- (no CPE)range: < 1.17.4-r0
- (no CPE)range: < 1.17.4-r0
- (no CPE)range: < 1.17.4-r0
- (no CPE)range: < 1.17.4-r0
- (no CPE)range: < 1.17.4-r0
- (no CPE)range: < 1.17.4-r0
- (no CPE)range: < 1.17.4-r0
- (no CPE)range: < 1.17.4-r0
- (no CPE)range: < 1.17.4-r0
- (no CPE)range: < 1.17.4-r0
- (no CPE)range: < 1.17.4-r0
- (no CPE)range: < 1.17.4-r0
- (no CPE)range: < 1.17.4-r0
- (no CPE)range: < 1.17.4-r0
- (no CPE)range: < 1.17.4-r0
- (no CPE)range: < 1.17.4-r0
- (no CPE)range: < 1.17.4-r0
- (no CPE)range: < 1.17.4-r0
- (no CPE)range: < 1.17.4-r0
- (no CPE)range: < 1.17.4-r0
- (no CPE)range: < 1.17.4-r0
- (no CPE)range: < 1.17.4-r0
- (no CPE)range: < 1.17.4-r0
- (no CPE)range: < 1.18.0-150200.5.17.1
- (no CPE)range: < 1.18.0-150200.5.17.1
- (no CPE)range: < 1.18.0-150200.5.17.1
- (no CPE)range: < 1.18.0-150200.5.17.1
- (no CPE)range: < 1.18.0-150200.5.17.1
- (no CPE)range: < 1.18.0-150200.5.17.1
- (no CPE)range: < 1.18.0-150200.5.17.1
- (no CPE)range: < 1.18.0-150200.5.17.1
- (no CPE)range: < 1.18.0-150200.5.17.1
- (no CPE)range: < 1.18.0-150200.5.17.1
- (no CPE)range: < 1.18.0-150200.5.17.1
- (no CPE)range: < 1.18.0-150200.5.17.1
- (no CPE)range: < 1.18.0-150200.5.17.1
- (no CPE)range: < 1.18.0-150200.5.17.1
- (no CPE)range: < 1.18.0-150200.5.17.1
- Range: All versions up to and including v1.16.2
- Range: All versions up to and including 24.6.2
Patches
Vulnerability mechanics
References
1- nvidia.custhelp.com/app/answers/detail/a_id/5585nvdVendor Advisory
News mentions
0No linked articles in our index yet.