UBUNTU-CVE-2024-21808
- Source
- https://ubuntu.com/security/CVE-2024-21808
- Import Source
- https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2024/UBUNTU-CVE-2024-21808.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/UBUNTU-CVE-2024-21808
- Upstream
- Published
- 2024-11-13T21:15:00Z
- Modified
- 2025-07-14T04:37:05Z
- Severity
-
- 4.2 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:L/I:L/A:L CVSS Calculator
- 1.0 (Low) CVSS_V4 - CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:A/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N CVSS Calculator
- Ubuntu - medium
- Summary
- [none]
- Details
-
Improper buffer restrictions in some Intel(R) VPL software before version 24.1.4 may allow an authenticated user to potentially enable escalation of privilege via local access.
- References
Affected packages
Ubuntu:Pro:20.04:LTS / intel-mediasdk
Package
- Name
- intel-mediasdk
- Purl
- pkg:deb/ubuntu/intel-mediasdk@20.1.0-0ubuntu1?arch=source&distro=esm-apps/focal
Ubuntu:22.04:LTS / intel-mediasdk
Package
- Name
- intel-mediasdk
- Purl
- pkg:deb/ubuntu/intel-mediasdk@22.3.0-1?arch=source&distro=jammy
Ubuntu:22.04:LTS / onevpl-intel-gpu
Package
- Name
- onevpl-intel-gpu
- Purl
- pkg:deb/ubuntu/onevpl-intel-gpu@22.3.2-1?arch=source&distro=jammy
Ubuntu:24.04:LTS / intel-mediasdk
Package
- Name
- intel-mediasdk
- Purl
- pkg:deb/ubuntu/intel-mediasdk@22.5.4-1?arch=source&distro=noble