DEBIAN-CVE-2023-47282

DEBIAN-CVE-2023-47282 PUBLISHED CVSS 3.9000000953674316 LOW

Out-of-bounds write in Intel(R) Media SDK all versions and some Intel(R) oneVPL software before version 23.3.5 may allow an authenticated user to potentially enable escalation of privilege via local access.

Risk Scores

CVSS 3.1

3.9000000953674316

CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:L

Affected Products

Vendor	Product	Versions
Debian:13	onevpl-intel-gpu	0, 0, 0
Debian:12	onevpl-intel-gpu	22.6.4-1, 22.6.4-1, 23.2.3-1
Debian:14	onevpl-intel-gpu	0, 0, 0
Debian:12	intel-mediasdk	22.5.4-1, 22.5.4-1, 0
Debian:11	intel-mediasdk	21.3.2-1, 21.3.4-1, 22.1.0-1

Timeline

May 16, 2024 CVE Published
Apr 28, 2026 CVE Updated

References

https://security-tracker.debian.org/tracker/CVE-2023-47282 advisory

Open in Interactive Console →