CVE-2023-25516: 
NVIDIA Graphics Driver vulnerability analysis and mitigation

NVIDIA GPU Display Driver for Linux contains a vulnerability (CVE-2023-25516) in the kernel mode layer that was disclosed on July 3, 2023. The vulnerability affects multiple versions of NVIDIA GPU Display Driver for Linux, including versions up to 11.12, versions 13.0 through 13.7, and versions 15.0 through 15.2 (NVD).

The vulnerability is an integer overflow in the kernel mode layer that can be triggered by an unprivileged user. It has been assigned a CVSS v3.1 base score of 7.1 (High), with the following vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H. The attack requires local access, low attack complexity, and low privileges, with no user interaction needed (NVD, Ubuntu).

If exploited, this vulnerability can lead to information disclosure and denial of service in affected systems. The vulnerability has high impact on both confidentiality and availability, while maintaining no impact on integrity (NVD).

Multiple versions of the NVIDIA GPU drivers have been patched to address this vulnerability. Ubuntu has released fixed versions including 450.248.02, 470.199.02, 525.125.06, and 535.54.03 for various releases. Users are advised to update to the latest version of their respective driver series (Ubuntu).