UBUNTU-CVE-2023-47282

See a problem?
Please try reporting it to the source first.

Source

https://ubuntu.com/security/CVE-2023-47282

Import Source

https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2023/UBUNTU-CVE-2023-47282.json

JSON Data

https://api.osv.dev/v1/vulns/UBUNTU-CVE-2023-47282

Upstream

CVE-2023-47282

Published

2024-05-16T21:16:00Z

Modified

2025-07-14T06:35:32.600262Z

Severity

3.9 (Low) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:L CVSS Calculator
- low

Summary

[none]

Details

Out-of-bounds write in Intel(R) Media SDK all versions and some Intel(R) oneVPL software before version 23.3.5 may allow an authenticated user to potentially enable escalation of privilege via local access.

References

Affected packages

Ubuntu:Pro:20.04:LTS / intel-mediasdk

Package

Name: intel-mediasdk
Purl: pkg:deb/ubuntu/intel-mediasdk@20.1.0-0ubuntu1?arch=source&distro=esm-apps/focal

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

19.*

19.2.1-1

19.4.0-1

19.4.0-1build1

20.*

20.1.0-0ubuntu1

Ecosystem specific

{
    "priority_reason": "This is rated low severity by Intel"
}

Ubuntu:22.04:LTS / intel-mediasdk

Package

Name: intel-mediasdk
Purl: pkg:deb/ubuntu/intel-mediasdk@22.3.0-1?arch=source&distro=jammy

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

21.*

21.1.0-1

21.3.4-1

22.*

22.1.0-1

22.3.0-1

Ecosystem specific

{
    "priority_reason": "This is rated low severity by Intel"
}

Ubuntu:22.04:LTS / onevpl

Package

Name: onevpl
Purl: pkg:deb/ubuntu/onevpl@2022.1.0-2?arch=source&distro=jammy

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

2022.*

2022.0.4-1

2022.1.0-2

Ecosystem specific

{
    "priority_reason": "This is rated low severity by Intel"
}

Ubuntu:24.04:LTS / intel-mediasdk

Package

Name: intel-mediasdk
Purl: pkg:deb/ubuntu/intel-mediasdk@22.5.4-1?arch=source&distro=noble

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

22.*

22.5.4-1

Ecosystem specific

{
    "priority_reason": "This is rated low severity by Intel"
}

Ubuntu:24.04:LTS / onevpl

Package

Name: onevpl
Purl: pkg:deb/ubuntu/onevpl@2023.3.0-1build1?arch=source&distro=noble

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

2023.*

2023.3.0-1

2023.3.0-1build1

Ecosystem specific

{
    "priority_reason": "This is rated low severity by Intel"
}