NVIDIA DGX Systems - Linux kernel and NVIDIA driver security updates in response to CPU speculative side channel vulnerabilities CVE-2017-5753, CVE-2017-5715, and CVE-2017-5754

Answer ID 4622   |    Updated 01/17/2018 01:56 PM

NVIDIA DGX Systems - Linux kernel and NVIDIA driver security updates in response to CPU speculative side channel vulnerabilities CVE-2017-5753, CVE-2017-5715, and CVE-2017-5754

DGX customers should be aware that on January 3, 2018, Google Project Zero disclosed a potential security issue related to CPU speculative side channel exploits against certain processors, including the Intel processors used in DGX products. NVIDIA's core business and the core of our DGX products is GPU computing. We believe our GPU hardware, including the GPU hardware in our DGX products, is immune to the reported security issue. As for our driver software, we are providing initial updates to help mitigate the Intel CPU security issue and maintain compatibility with recent Linux updates for these security issues.

DGX OS Server and DGX OS Desktop releases 2.1.2 and 3.1.4 include an updated Linux kernel that mitigates aspects of these security issues. In addition, the release includes an updated Linux GPU Driver version 384.111. The DGX updated software was released on January 10, 2018. Please review the notification for releases 2.1.2 and 3.1.4 DGX OS Server versions 2.1.2 and 3.1.4 Release Notification  DGX OS Desktop v3.1.3 Release Notification for more information.

For details on the vulnerability, refer to Security Bulletin 4611 for more information.

The DGX product team expects to work together with its ecosystem partners as they release future updates to further strengthen mitigations for the affected Intel CPU. For updates and additional information, actively monitor the enterprise support portal and opt-in to DGX product communications.

To see NVIDIA security bulletins, subscribe to security bulletin notifications or learn more about NVIDIA's product security management process, go to NVIDIA Product Security.

Was this answer helpful?
 
Your rating has been submitted, please tell us how we can make this answer more useful.

Print