USN-8091-1 util-linux vulnerability

It was discovered that the util-linux su utility did not drop capabilities when being used with the --pty option. While not a security issue by itself, a local attacker could possibly use the su tool to exploit vulnerabilities in other applications...

MGASA-2022-0007 Updated gnome-shell packages fix security vulnerability

Drop extra capabilities from gnome-shell. They're optional and they break shutdown from the login screen with new glibs. CVE-2021-3982...

PT-2018-10144 · Red Hat · Podman

Name of the Vulnerable Software and Affected Versions: podman versions prior to 0.6.1 Description: The issue arises from podman not dropping capabilities when a container is executed as a non-root user, resulting in unnecessary privileges being granted to the container. Recommendations: For...

jakarta-commons-daemon: jsvc does not drop capabilities allowing access to files and directories owned by the superuser

native/unix/native/jsvc-unix.c in jsvc in the Daemon component 1.0.3 through 1.0.6 in Apache Commons, as used in Apache Tomcat 5.5.32 through 5.5.33, 6.0.30 through 6.0.32, and 7.0.x before 7.0.20 on Linux, does not drop capabilities, which allows remote attackers to bypass read permissions for...