Lucene search
K

RedHat Update for libcap RHSA-2011:1694-03

🗓️ 09 Jul 2012 00:00:00Reported by Copyright (C) 2012 Greenbone AGType 
openvas
 openvas
🔗 plugins.openvas.org👁 14 Views

The remote host is missing an update for the 'libcap' package(s) announced via the referenced advisory. Upgrade to the updated packages containing backported patches

Related
Refs
Code
ReporterTitlePublishedViews
Family
CVE
CVE-2011-4099
8 Feb 201400:00
cve
Cvelist
CVE-2011-4099
8 Feb 201400:00
cvelist
Debian CVE
CVE-2011-4099
8 Feb 201400:00
debiancve
Oracle linux
libcap security and bug fix update
14 Dec 201100:00
oraclelinux
EUVD
EUVD-2011-4050
7 Oct 202500:30
euvd
F5 Networks
K16880: Libcap vulnerability CVE-2011-4099
21 Feb 202318:26
f5
F5 Networks
SOL16880 - Libcap vulnerability CVE-2011-4099
2 Jul 201500:00
f5
Tenable Nessus
Mandriva Linux Security Advisory : libcap (MDVSA-2011:185)
13 Dec 201100:00
nessus
Tenable Nessus
MiracleLinux 4 : libcap-2.16-5.5.AXS4 (AXSA:2012-32:01)
14 Jan 202600:00
nessus
Tenable Nessus
Oracle Linux 6 : libcap (ELSA-2011-1694)
7 Sep 202300:00
nessus
Rows per page
# SPDX-FileCopyrightText: 2012 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only

if(description)
{
  script_xref(name:"URL", value:"https://www.redhat.com/archives/rhsa-announce/2011-December/msg00016.html");
  script_oid("1.3.6.1.4.1.25623.1.0.870710");
  script_version("2024-03-21T05:06:54+0000");
  script_tag(name:"last_modification", value:"2024-03-21 05:06:54 +0000 (Thu, 21 Mar 2024)");
  script_tag(name:"creation_date", value:"2012-07-09 10:51:50 +0530 (Mon, 09 Jul 2012)");
  script_cve_id("CVE-2011-4099");
  script_tag(name:"cvss_base", value:"4.6");
  script_tag(name:"cvss_base_vector", value:"AV:L/AC:L/Au:N/C:P/I:P/A:P");
  script_xref(name:"RHSA", value:"2011:1694-03");
  script_name("RedHat Update for libcap RHSA-2011:1694-03");

  script_tag(name:"summary", value:"The remote host is missing an update for the 'libcap'
  package(s) announced via the referenced advisory.");
  script_category(ACT_GATHER_INFO);
  script_copyright("Copyright (C) 2012 Greenbone AG");
  script_family("Red Hat Local Security Checks");
  script_dependencies("gather-package-list.nasl");
  script_mandatory_keys("ssh/login/rhel", "ssh/login/rpms", re:"ssh/login/release=RHENT_6");
  script_tag(name:"affected", value:"libcap on Red Hat Enterprise Linux Desktop (v. 6),
  Red Hat Enterprise Linux Server (v. 6),
  Red Hat Enterprise Linux Workstation (v. 6)");
  script_tag(name:"solution", value:"Please Install the Updated Packages.");
  script_tag(name:"insight", value:"The libcap packages provide a library and tools for getting and setting
  POSIX capabilities.

  It was found that capsh did not change into the new root when using the
  '--chroot' option. An application started via the 'capsh --chroot' command
  could use this flaw to escape the chroot restrictions. (CVE-2011-4099)

  This update also fixes the following bug:

  * Previously, the libcap packages did not contain the capsh(1) manual page.
  With this update, the capsh(1) manual page is included. (BZ#730957)

  All libcap users are advised to upgrade to these updated packages, which
  contain backported patches to correct these issues.");
  script_tag(name:"qod_type", value:"package");
  script_tag(name:"solution_type", value:"VendorFix");

  exit(0);
}

include("revisions-lib.inc");
include("pkg-lib-rpm.inc");

release = rpm_get_ssh_release();
if(!release) exit(0);

res = "";

if(release == "RHENT_6")
{

  if ((res = isrpmvuln(pkg:"libcap", rpm:"libcap~2.16~5.5.el6", rls:"RHENT_6")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"libcap-debuginfo", rpm:"libcap-debuginfo~2.16~5.5.el6", rls:"RHENT_6")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"libcap-devel", rpm:"libcap-devel~2.16~5.5.el6", rls:"RHENT_6")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if (__pkg_match) exit(99);
  exit(0);
}

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

21 Mar 2024 00:00Current
6.5Medium risk
Vulners AI Score6.5
CVSS 24.6
EPSS0.00379
14