Merge pull request #586 from rpkelly/nvidia-container-toolkit-advisories

advisories: add advisories for nvidia-container-toolkit

Author: rpkelly

advisories/9.1.0/BRSA-bcardktkyoc9.toml

@@ -0,0 +1,17 @@
+[advisory]
+id = "BRSA-bcardktkyoc9"
+title = "nvidia-container-toolkit CVE-2025-23267"
+cve = "CVE-2025-23267"
+severity = "high"
+description = "NVIDIA Container Toolkit for all platforms contains a vulnerability in the update-ldcache hook. This might lead to data tampering and denial of service."
+
+[[advisory.products]]
+package-name = "nvidia-container-toolkit"
+patched-version = "1.17.8"
+patched-epoch = "1"
+
+[updateinfo]
+author = "rpkelly"
+issue-date = 2025-07-15T19:05:11Z
+arches = ["aarch64", "x86_64"]
+version = "9.1.0"

advisories/9.1.0/BRSA-hbnyaarqfmwl.toml

@@ -0,0 +1,17 @@
+[advisory]
+id = "BRSA-hbnyaarqfmwl"
+title = "nvidia-container-toolkit CVE-2025-23266"
+cve = "CVE-2025-23266"
+severity = "high"
+description = "NVIDIA Container Toolkit for all platforms contains a vulnerability in some hooks used to initialize the container, which could execute arbitrary code with elevated permissions. This might lead to escalation of privileges, data tampering, information disclosure, and denial of service."
+
+[[advisory.products]]
+package-name = "nvidia-container-toolkit"
+patched-version = "1.17.8"
+patched-epoch = "1"
+
+[updateinfo]
+author = "rpkelly"
+issue-date = 2025-07-15T19:03:09Z
+arches = ["x86_64", "aarch64"]
+version = "9.1.0"