6 matches found
Amazon Linux 2023 : captree, libcap, libcap-devel (ALAS2023-2026-1721)
It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2026-1721 advisory. Actions which insert URLs into the content attribute of HTML meta tags are not escaped. This can allow XSS if the meta tag also has an http-equiv attribute with the value refresh. A new GODEBU...
libcap-devel-2.78-1.1 on GA media (moderate)
libcap-devel-2.78-1.1 on GA media Announcement ID: openSUSE-SU-2026:10536-1 Rating: moderate Cross-References: CVE-2026-4878 CVSS scores: CVE-2026-4878 SUSE : 7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2026-4878 SUSE : 7.3 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N...
Amazon Linux 2023 : captree, libcap, libcap-devel (ALAS2023-2026-1389)
It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2026-1389 advisory. net/http: memory exhaustion in Request.ParseForm CVE-2025-61726 archive/zip: denial of service when parsing arbitrary ZIP archives CVE-2025-61728 crypto/tls: handshake messages may be processe...
Amazon Linux 2023 : captree, libcap, libcap-devel (ALAS2023-2025-1322)
It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2025-1322 advisory. crypto/x509: excluded subdomain constraint does not restrict wildcard SANs An excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf...
OPENSUSE-SU-2024:12945-1 libcap-devel-2.69-1.1 on GA media
These are all security issues fixed in the libcap-devel-2.69-1.1 package on the GA media of openSUSE Tumbleweed...
Amazon Linux 2023 : libcap, libcap-devel, libcap-static (ALAS2023-2023-195)
It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2023-195 advisory. libcap is vulnerable to a denial of service caused by the error handling in wrappthreadcreate function, which will cause memory to be leaked in the case of an error. CVE-2023-2602 Tenable has extracted...