5.8 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
5.1%
The capsh program in libcap before 2.22 does not change the current working directory when the --chroot option is specified, which allows local users to bypass the chroot restrictions via unspecified vectors.
rhn.redhat.com/errata/RHSA-2011-1694.html
bugzilla.redhat.com/show_bug.cgi?id=722694
sites.google.com/site/fullycapable/release-notes-for-libcap/releasenotesfor222