GoogleOSV:SUSE-SU-2024:3339-1Security update for libmfx
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:N/I:N/A:H
AI Score
Confidence
Low
This update for libmfx fixes the following issues:
- CVE-2023-48368: Fixed an improper input validation. (bsc#1226897)
- CVE-2023-45221: Fixed an improper buffer restrictions. (bsc#1226898)
- CVE-2023-22656: Fixed an out-of-bounds read. (bsc#1226899)
- CVE-2023-47282: Fixed an out-of-bounds write. (bsc#1226900)
- CVE-2023-47169: Fixed an improper buffer restrictions. (bsc#1226901)
References
bugzilla.suse.com/1219494
bugzilla.suse.com/1226892
bugzilla.suse.com/1226897
bugzilla.suse.com/1226898
bugzilla.suse.com/1226899
bugzilla.suse.com/1226900
bugzilla.suse.com/1226901
www.suse.com/security/cve/CVE-2023-22656
www.suse.com/security/cve/CVE-2023-45221
www.suse.com/security/cve/CVE-2023-47169
www.suse.com/security/cve/CVE-2023-47282
www.suse.com/security/cve/CVE-2023-48368
www.suse.com/support/update/announcement/2024/suse-su-20243339-1/
Related
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:N/I:N/A:H
AI Score
Confidence
Low