Lucene search
+L

38 matches found

nessus
nessus
added 2025/06/11 12:0 a.m.8 views

EulerOS 2.0 SP12 : libcap (EulerOS-SA-2025-1594)

According to the versions of the libcap package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : The PAM module pamcap.so of libcap configuration supports group names starting with @, during actual parsing, configurations not starting with @ ar...

6.1CVSS6.6AI score0.00149EPSS
Exploits0References2
nessus
nessus
added 2025/03/27 12:0 a.m.17 views

Amazon Linux 2 : libcap (ALAS-2025-2796)

The version of libcap installed on the remote host is prior to 2.54-1. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2025-2796 advisory. The PAM module pamcap.so of libcap configuration supports group names starting with @, during actual parsing, configurations not...

6.1CVSS6.6AI score0.00149EPSS
Exploits0References4
amazon
amazon
added 2025/03/26 12:0 a.m.6 views

Important: libcap

Issue Overview: The PAM module pamcap.so of libcap configuration supports group names starting with "@", during actual parsing, configurations not starting with "@" are incorrectly recognized as group names. This may result in nonintended users being granted an inherited capability set, potential...

6.1CVSS6.9AI score0.00149EPSS
Exploits0
nessus
nessus
added 2025/03/20 12:0 a.m.22 views

Azure Linux 3.0 Security Update: libcap (CVE-2025-1390)

The version of libcap installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-1390 advisory. - The PAM module pamcap.so of libcap configuration supports group names starting with @, during actual parsing,...

6.1CVSS6.6AI score0.00149EPSS
Exploits0References2
nessus
nessus
added 2025/02/27 12:0 a.m.12 views

CBL Mariner 2.0 Security Update: libcap (CVE-2025-1390)

The version of libcap installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-1390 advisory. - The PAM module pamcap.so of libcap configuration supports group names starting with @, during actual parsing,...

6.1CVSS6.6AI score0.00149EPSS
Exploits0References2
redhatcve
redhatcve
added 2025/02/18 7:21 a.m.6 views

CVE-2025-1390

A flaw was found in libcap. This vulnerability allows local privilege escalation via incorrect parsing of group names in /etc/security/capability.conf, leading to unintended users being granted inherited capabilities. Mitigation Mitigation for this issue is either not available or the currently...

6.1CVSS6.6AI score0.00149EPSS
Exploits0References4
nessus
nessus
added 2025/02/14 12:0 a.m.8 views

NewStart CGSL MAIN 6.06 (SP) : libcap Vulnerability (NS-SA-2025-0022)

The remote NewStart CGSL host, running version MAIN 6.06 SP, has libcap packages installed that are affected by a vulnerability: - A vulnerability was found in the pthreadcreate function in libcap. This issue may allow a malicious actor to use cause realpthreadcreate to return an error, which can...

3.3CVSS6.3AI score0.0035EPSS
Exploits1References3
nessus
nessus
added 2023/07/26 12:0 a.m.33 views

SUSE SLES15: libcap-devel / libcap-progs / libcap2 / libcap2-32bit / pam_cap / etc (SUSE-SU-2023:2956-1)

The remote SUSE Linux SLES15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2023:2956-1 advisory. - CVE-2023-2603: Fixed an integer overflow or wraparound in libcap/capalloc.c:libcapstrdup bsc1211419. Tenable has extracted the preceding...

7.8CVSS6.8AI score0.00574EPSS
Exploits1References4
osv
osv
added 2023/07/25 6:33 a.m.5 views

SUSE-SU-2023:2956-1 Security update for libcap

This update for libcap fixes the following issues: - CVE-2023-2603: Fixed an integer overflow or wraparound in libcap/capalloc.c:libcapstrdup bsc1211419...

7.8CVSS7.8AI score0.00574EPSS
Exploits1References3
nessus
nessus
added 2023/06/30 12:0 a.m.34 views

CBL Mariner 2.0 Security Update: libcap (CVE-2023-2602)

The version of libcap installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-2602 advisory. - A vulnerability was found in the pthreadcreate function in libcap. This issue May allow a malicious actor to...

3.3CVSS6.3AI score0.0035EPSS
Exploits1References2
osv
osv
added 2023/06/28 5:21 a.m.6 views

MGASA-2023-0205 Updated libcap packages fix security vulnerability

A vulnerability was found in the pthreadcreate function in libcap. This issue may allow a malicious actor to use cause realpthreadcreate to return an error, which can exhaust the process memory. CVE-2023-2602 A vulnerability was found in libcap. This issue occurs in the libcapstrdup function and...

7.8CVSS5.6AI score0.00574EPSS
Exploits2References6
amazon
amazon
added 2023/06/07 12:0 a.m.4 views

Low: libcap

Issue Overview: libcap is vulnerable to a denial of service caused by the error handling in wrappthreadcreate function, which will cause memory to be leaked in the case of an error. CVE-2023-2602 Affected Packages: libcap Issue Correction: Run dnf update libcap --releasever 2023.0.20230607 or dnf...

3.3CVSS6.5AI score0.0035EPSS
Exploits1
osv
osv
added 2023/06/06 8:15 p.m.5 views

ALPINE-CVE-2023-2603

A vulnerability was found in libcap. This issue occurs in the libcapstrdup function and can lead to an integer overflow if the input string is close to 4GiB...

7.8CVSS7.1AI score0.00574EPSS
Exploits1References1
vulnrichment
vulnrichment
added 2023/06/06 12:0 a.m.1 views

CVE-2023-2603

A vulnerability was found in libcap. This issue occurs in the libcapstrdup function and can lead to an integer overflow if the input string is close to 4GiB...

7.2AI score0.00574EPSS
Exploits1References4
ptsecurity
ptsecurity
added 2023/05/15 12:0 a.m.8 views

PT-2023-8920 · Libpcap +10 · Libpcap +10

Name of the Vulnerable Software and Affected Versions: libcap affected versions not specified Description: A vulnerability was found in libcap, specifically in the libcap strdup function, which can lead to an integer overflow if the input string is close to 4GiB. This issue may allow an attacker ...

7.8CVSS7.5AI score0.00574EPSS
Exploits2References78
f5
f5
added 2023/02/21 6:26 p.m.25 views

K16880: Libcap vulnerability CVE-2011-4099

Security Advisory Description Description The capsh program in libcap before 2.22 does not change the current working directory when the --chroot option is specified, which allows local users to bypass the chroot restrictions via unspecified vectors. CVE-2011-4099 Impact None. F5 products are not...

4.6CVSS6.1AI score0.00379EPSS
Exploits0
f5
f5
added 2015/07/02 12:0 a.m.32 views

SOL16880 - Libcap vulnerability CVE-2011-4099

The capsh program in libcap before 2.22 does not change the current working directory when the --chroot option is specified, which allows local users to bypass the chroot restrictions via unspecified vectors. CVE-2011-4099...

4.6CVSS4.8AI score0.00379EPSS
Exploits0References3
osv
osv
added 2014/02/08 12:55 a.m.7 views

CVE-2011-4099

The capsh program in libcap before 2.22 does not change the current working directory when the --chroot option is specified, which allows local users to bypass the chroot restrictions via unspecified vectors...

5.9AI score
Exploits0References3
Rows per page
Query Builder