SUSE Package Hub - SUSE-SLE-Module-Packagehub-Subpackages-15-SP5-2024-3339

Update Info

SUSE-SLE-Module-Packagehub-Subpackages-15-SP5-2024-3339

Security update for libmfx

Type: security

Severity: moderate

Issued: 2024-09-19

Description:

This update for libmfx fixes the following issues:

- CVE-2023-48368: Fixed an improper input validation. (bsc#1226897)
- CVE-2023-45221: Fixed an improper buffer restrictions. (bsc#1226898)
- CVE-2023-22656: Fixed an out-of-bounds read. (bsc#1226899)
- CVE-2023-47282: Fixed an out-of-bounds write. (bsc#1226900)
- CVE-2023-47169: Fixed an improper buffer restrictions. (bsc#1226901)

References

jira: PED-10024 https://jira.suse.com/browse/PED-10024
CVE: CVE-2023-48368
CVE: CVE-2023-47282
CVE: CVE-2023-47169
CVE: CVE-2023-45221
CVE: CVE-2023-22656
Bugzilla: 1226901 VUL-0: CVE-2023-47169: libmfx: improper buffer restrictions
Bugzilla: 1226900 VUL-0: CVE-2023-47282: libmfx: out-of-bounds write
Bugzilla: 1226899 VUL-0: CVE-2023-22656: libmfx: out-of-bounds read
Bugzilla: 1226898 VUL-0: CVE-2023-45221: libmfx: improper buffer restrictions
Bugzilla: 1226897 VUL-0: CVE-2023-48368: libmfx: improper input validation
Bugzilla: 1226892 L3: L3-Question: Multiple vulnerabilities in the Intel Media SDK (libmfx1) — ref:_00D1igLOd._500TrCexKD:ref
Bugzilla: 1219494 libmfx no longer supported

Packages

libmfx-22.6.1-150500.3.5.1