The libcap packages provide a library and tools for getting and setting POSIX capabilities.
It was found that capsh did not change into the new root when using the "--chroot" option. An application started via the "capsh --chroot" command could use this flaw to escape the chroot restrictions. (CVE-2011-4099)
This update also fixes the following bug:
All libcap users are advised to upgrade to these updated packages, which contain backported patches to correct these issues.