Lucene search
+L

24 matches found

CVE
CVE
added 2014/02/08 12:0 a.m.58 views

CVE-2011-4099

The CVE-2011-4099 issue affects the capsh program in libcap prior to version 2.22, where the current working directory is not changed when --chroot is used, enabling local users to bypass chroot restrictions. Affected component: libcap (capsh utility). Root cause: chroot handling does not chdir t...

4.6CVSS5.9AI score0.00379EPSS
Exploits0References3Affected Software1
Tenable Nessus
Tenable Nessus
added 2011/12/13 12:0 a.m.33 views

SuSE 11.1 Security Update : libcap (SAT Patch Number 5380)

The following bug has been fixed : - capsh did not chdir'/' after calling chroot. Programs could therefore access the current directory outside of the chroot. CVE-2011-4099 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted...

4.6CVSS5.2AI score0.00379EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2011/12/06 12:0 a.m.27 views

RHEL 6 : libcap (RHSA-2011:1694)

The remote Redhat Enterprise Linux 6 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2011:1694 advisory. The libcap packages provide a library and tools for getting and setting POSIX capabilities. It was found that capsh did not change into the new root...

4.6CVSS5.6AI score0.00379EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2011/12/05 7:52 p.m.7 views

capsh: does not chdir after chroot

The capsh program in libcap before 2.22 does not change the current working directory when the --chroot option is specified, which allows local users to bypass the chroot restrictions via unspecified vectors...

4.6CVSS5.8AI score0.00379EPSS
Exploits0References4
Rows per page
Query Builder