CVE-2023-22656

See a problem?
Source
https://nvd.nist.gov/vuln/detail/CVE-2023-22656
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-22656.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2023-22656
Related
Published
2024-05-16T21:15:50Z
Modified
2024-09-19T16:48:17.327610Z
Summary
[none]
Details

Out-of-bounds read in Intel(R) Media SDK and some Intel(R) oneVPL software before version 23.3.5 may allow an authenticated user to potentially enable escalation of privilege via local access.

References

Affected packages

Debian:11 / intel-mediasdk

Package

Name
intel-mediasdk
Purl
pkg:deb/debian/intel-mediasdk?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

21.*

21.1.0-1
21.3.2-1
21.3.4-1

22.*

22.1.0-1
22.3.0-1
22.5.4-1

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Debian:12 / intel-mediasdk

Package

Name
intel-mediasdk
Purl
pkg:deb/debian/intel-mediasdk?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

22.*

22.5.4-1

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Debian:13 / intel-mediasdk

Package

Name
intel-mediasdk
Purl
pkg:deb/debian/intel-mediasdk?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

22.*

22.5.4-1

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Debian:12 / onevpl

Package

Name
onevpl
Purl
pkg:deb/debian/onevpl?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

2023.*

2023.1.1-1
2023.3.0-1

1:2.*

1:2.13.0-1

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Debian:13 / onevpl

Package

Name
onevpl
Purl
pkg:deb/debian/onevpl?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

2023.*

2023.1.1-1
2023.3.0-1

1:2.*

1:2.13.0-1

Ecosystem specific

{
    "urgency": "not yet assigned"
}