38 matches found
EulerOS 2.0 SP12 : libcap (EulerOS-SA-2025-1594)
According to the versions of the libcap package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : The PAM module pamcap.so of libcap configuration supports group names starting with @, during actual parsing, configurations not starting with @ ar...
Amazon Linux 2 : libcap (ALAS-2025-2796)
The version of libcap installed on the remote host is prior to 2.54-1. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2025-2796 advisory. The PAM module pamcap.so of libcap configuration supports group names starting with @, during actual parsing, configurations not...
Important: libcap
Issue Overview: The PAM module pamcap.so of libcap configuration supports group names starting with "@", during actual parsing, configurations not starting with "@" are incorrectly recognized as group names. This may result in nonintended users being granted an inherited capability set, potential...
Azure Linux 3.0 Security Update: libcap (CVE-2025-1390)
The version of libcap installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-1390 advisory. - The PAM module pamcap.so of libcap configuration supports group names starting with @, during actual parsing,...
CBL Mariner 2.0 Security Update: libcap (CVE-2025-1390)
The version of libcap installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-1390 advisory. - The PAM module pamcap.so of libcap configuration supports group names starting with @, during actual parsing,...
CVE-2025-1390
A flaw was found in libcap. This vulnerability allows local privilege escalation via incorrect parsing of group names in /etc/security/capability.conf, leading to unintended users being granted inherited capabilities. Mitigation Mitigation for this issue is either not available or the currently...
NewStart CGSL MAIN 6.06 (SP) : libcap Vulnerability (NS-SA-2025-0022)
The remote NewStart CGSL host, running version MAIN 6.06 SP, has libcap packages installed that are affected by a vulnerability: - A vulnerability was found in the pthreadcreate function in libcap. This issue may allow a malicious actor to use cause realpthreadcreate to return an error, which can...
SUSE SLES15: libcap-devel / libcap-progs / libcap2 / libcap2-32bit / pam_cap / etc (SUSE-SU-2023:2956-1)
The remote SUSE Linux SLES15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2023:2956-1 advisory. - CVE-2023-2603: Fixed an integer overflow or wraparound in libcap/capalloc.c:libcapstrdup bsc1211419. Tenable has extracted the preceding...
SUSE-SU-2023:2956-1 Security update for libcap
This update for libcap fixes the following issues: - CVE-2023-2603: Fixed an integer overflow or wraparound in libcap/capalloc.c:libcapstrdup bsc1211419...
CBL Mariner 2.0 Security Update: libcap (CVE-2023-2602)
The version of libcap installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-2602 advisory. - A vulnerability was found in the pthreadcreate function in libcap. This issue May allow a malicious actor to...
MGASA-2023-0205 Updated libcap packages fix security vulnerability
A vulnerability was found in the pthreadcreate function in libcap. This issue may allow a malicious actor to use cause realpthreadcreate to return an error, which can exhaust the process memory. CVE-2023-2602 A vulnerability was found in libcap. This issue occurs in the libcapstrdup function and...
Low: libcap
Issue Overview: libcap is vulnerable to a denial of service caused by the error handling in wrappthreadcreate function, which will cause memory to be leaked in the case of an error. CVE-2023-2602 Affected Packages: libcap Issue Correction: Run dnf update libcap --releasever 2023.0.20230607 or dnf...
ALPINE-CVE-2023-2603
A vulnerability was found in libcap. This issue occurs in the libcapstrdup function and can lead to an integer overflow if the input string is close to 4GiB...
CVE-2023-2603
A vulnerability was found in libcap. This issue occurs in the libcapstrdup function and can lead to an integer overflow if the input string is close to 4GiB...
PT-2023-8920 · Libpcap +10 · Libpcap +10
Name of the Vulnerable Software and Affected Versions: libcap affected versions not specified Description: A vulnerability was found in libcap, specifically in the libcap strdup function, which can lead to an integer overflow if the input string is close to 4GiB. This issue may allow an attacker ...
K16880: Libcap vulnerability CVE-2011-4099
Security Advisory Description Description The capsh program in libcap before 2.22 does not change the current working directory when the --chroot option is specified, which allows local users to bypass the chroot restrictions via unspecified vectors. CVE-2011-4099 Impact None. F5 products are not...
SOL16880 - Libcap vulnerability CVE-2011-4099
The capsh program in libcap before 2.22 does not change the current working directory when the --chroot option is specified, which allows local users to bypass the chroot restrictions via unspecified vectors. CVE-2011-4099...
CVE-2011-4099
The capsh program in libcap before 2.22 does not change the current working directory when the --chroot option is specified, which allows local users to bypass the chroot restrictions via unspecified vectors...