Amazon Linux 2023 : libcap, libcap-devel, libcap-static (ALAS2023-2025-897)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2025-897 advisory. The PAM module pamcap.so of libcap configuration supports group names starting with @, during actual parsing, configurations not starting with @ are incorrectly recognized as group names. This may resul...

Amazon Linux 2 : libcap (ALAS-2025-2796)

The version of libcap installed on the remote host is prior to 2.54-1. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2025-2796 advisory. The PAM module pamcap.so of libcap configuration supports group names starting with @, during actual parsing, configurations not...

Important: libcap

Issue Overview: The PAM module pamcap.so of libcap configuration supports group names starting with "@", during actual parsing, configurations not starting with "@" are incorrectly recognized as group names. This may result in nonintended users being granted an inherited capability set, potential...

Debian dla-4092 : libcap-dev - security update

The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-4092 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-4092-1 [email protected]...

Important: libcap

Issue Overview: The PAM module pamcap.so of libcap configuration supports group names starting with "@", during actual parsing, configurations not starting with "@" are incorrectly recognized as group names. This may result in nonintended users being granted an inherited capability set, potential...

Important: libcap

Issue Overview: The PAM module pamcap.so of libcap configuration supports group names starting with "@", during actual parsing, configurations not starting with "@" are incorrectly recognized as group names. This may result in nonintended users being granted an inherited capability set, potential...

Important: libcap

Issue Overview: The PAM module pamcap.so of libcap configuration supports group names starting with "@", during actual parsing, configurations not starting with "@" are incorrectly recognized as group names. This may result in nonintended users being granted an inherited capability set, potential...

Azure Linux 3.0 Security Update: libcap (CVE-2025-1390)

The version of libcap installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-1390 advisory. - The PAM module pamcap.so of libcap configuration supports group names starting with @, during actual parsing,...

CVE-2025-1390 affecting package libcap for versions less than 2.69-2

CVE-2025-1390 affecting package libcap for versions less than 2.69-2. A patched version of the package is available...

CBL Mariner 2.0 Security Update: libcap (CVE-2025-1390)

The version of libcap installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-1390 advisory. - The PAM module pamcap.so of libcap configuration supports group names starting with @, during actual parsing,...

Mageia: Security Advisory (MGASA-2025-0082)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2025-1390 affecting package libcap for versions less than 2.60-3

CVE-2025-1390 affecting package libcap for versions less than 2.60-3. A patched version of the package is available...

Updated libcap packages fix security vulnerability

pamcap: Fix potential configuration parsing error. CVE-2025-1390...

MGASA-2025-0082 Updated libcap packages fix security vulnerability

pamcap: Fix potential configuration parsing error. CVE-2025-1390...

The vulnerability of the PAM module pam_cap.so from the libcap library allows a hacker to elevate their privileges.

The vulnerability of the PAM module pamcap.so from the libcap library is related to deficiencies in access control due to incorrect identification of user names. Exploiting this vulnerability can allow attackers to increase their privileges...

CVE-2025-1390

A flaw was found in libcap. This vulnerability allows local privilege escalation via incorrect parsing of group names in /etc/security/capability.conf, leading to unintended users being granted inherited capabilities. Mitigation Mitigation for this issue is either not available or the currently...

AZL-56916 CVE-2025-1390 affecting package libcap for versions less than 2.60-3

The PAM module pamcap.so of libcap configuration supports group names starting with “@”, during actual parsing, configurations not starting with “@” are incorrectly recognized as group names. This may result in nonintended users being granted an inherited capability set, potentially leading to...

AZL-57034 CVE-2025-1390 affecting package libcap for versions less than 2.69-2

The PAM module pamcap.so of libcap configuration supports group names starting with “@”, during actual parsing, configurations not starting with “@” are incorrectly recognized as group names. This may result in nonintended users being granted an inherited capability set, potentially leading to...

libcap 安全漏洞

libcap is a package of network data capture functions from the individual developer Michael Kerrisk. A security vulnerability exists in libcap, which stems from a parsing error in the pamcap.so group name, which can lead to elevation of privilege for unauthorized users...

NewStart CGSL MAIN 6.06 (SP) : libcap Vulnerability (NS-SA-2025-0022)

The remote NewStart CGSL host, running version MAIN 6.06 SP, has libcap packages installed that are affected by a vulnerability: - A vulnerability was found in the pthreadcreate function in libcap. This issue may allow a malicious actor to use cause realpthreadcreate to return an error, which can...