rpm package
suse/libmfx&distro=SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS
pkg:rpm/suse/libmfx&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-LTSS
Vulnerabilities (5)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2023-47282 | Low | 3.9 | < 21.3.4-150400.3.5.1 | 21.3.4-150400.3.5.1 | May 16, 2024 | Out-of-bounds write in Intel(R) Media SDK all versions and some Intel(R) oneVPL software before version 23.3.5 may allow an authenticated user to potentially enable escalation of privilege via local access. | |
| CVE-2023-22656 | Low | 3.9 | < 21.3.4-150400.3.5.1 | 21.3.4-150400.3.5.1 | May 16, 2024 | Out-of-bounds read in Intel(R) Media SDK and some Intel(R) oneVPL software before version 23.3.5 may allow an authenticated user to potentially enable escalation of privilege via local access. | |
| CVE-2023-47169 | — | < 21.3.4-150400.3.5.1 | 21.3.4-150400.3.5.1 | May 16, 2024 | Improper buffer restrictions in Intel(R) Media SDK software all versions may allow an authenticated user to potentially enable denial of service via local access. | ||
| CVE-2023-45221 | — | < 21.3.4-150400.3.5.1 | 21.3.4-150400.3.5.1 | May 16, 2024 | Improper buffer restrictions in Intel(R) Media SDK all versions may allow an authenticated user to potentially enable escalation of privilege via local access. | ||
| CVE-2023-48368 | — | < 21.3.4-150400.3.5.1 | 21.3.4-150400.3.5.1 | May 16, 2024 | Improper input validation in Intel(R) Media SDK software all versions may allow an authenticated user to potentially enable denial of service via local access. |
- affected < 21.3.4-150400.3.5.1fixed 21.3.4-150400.3.5.1
Out-of-bounds write in Intel(R) Media SDK all versions and some Intel(R) oneVPL software before version 23.3.5 may allow an authenticated user to potentially enable escalation of privilege via local access.
- affected < 21.3.4-150400.3.5.1fixed 21.3.4-150400.3.5.1
Out-of-bounds read in Intel(R) Media SDK and some Intel(R) oneVPL software before version 23.3.5 may allow an authenticated user to potentially enable escalation of privilege via local access.
- CVE-2023-47169May 16, 2024affected < 21.3.4-150400.3.5.1fixed 21.3.4-150400.3.5.1
Improper buffer restrictions in Intel(R) Media SDK software all versions may allow an authenticated user to potentially enable denial of service via local access.
- CVE-2023-45221May 16, 2024affected < 21.3.4-150400.3.5.1fixed 21.3.4-150400.3.5.1
Improper buffer restrictions in Intel(R) Media SDK all versions may allow an authenticated user to potentially enable escalation of privilege via local access.
- CVE-2023-48368May 16, 2024affected < 21.3.4-150400.3.5.1fixed 21.3.4-150400.3.5.1
Improper input validation in Intel(R) Media SDK software all versions may allow an authenticated user to potentially enable denial of service via local access.