Stuff we've discussed on IRC.
Posted by ats at 2006-10-16 23:17
"The NVIDIA Binary Graphics Driver for Linux is vulnerable to a buffer overflow that allows an attacker to run arbitrary code as root."
"A simple HTML page containing an INPUT field with a long value is sufficient to demonstrate the DoS."
"It may be possible to use Flash movies, Java applets, or embedded web fonts to supply the custom glyph data necessary for reliable remote code execution."
... just in case it's not obvious why running untrustable proprietary binary code (especially with kernel privileges) is a bad idea.
And from LWN: "This problem may have been known since 2004; NVidia acknowledged it back in July, but it remains unfixed."