AZL-48840

See a problem?

Import Source

https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-48840.json

JSON Data

https://api.osv.dev/v1/vulns/AZL-48840

Upstream

CVE-2023-39929

Published

2024-05-16T21:15:53Z

Modified

2026-04-21T04:29:41.586468Z

Summary

CVE-2023-39929 affecting package libva 2.11.0-143

Details

Uncontrolled search path in some Libva software maintained by Intel(R) before version 2.20.0 may allow an authenticated user to potentially enable escalation of privilege via local access.

References

https://nvd.nist.gov/vuln/detail/CVE-2023-39929

Affected packages

Azure Linux:2 / libva

Package

Name: libva
Purl: pkg:rpm/azure-linux/libva

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Last affected

2.11.0-143

Database specific

source

"https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-48840.json"