Oracle Linux 8 : libcap (ELSA-2023-4524)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2023-4524 advisory. - Fix integer overflow in libcapstrdup CVE-2023-2603 Resolves: rhbz2210637 Tenable has extracted the preceding description block directly from the Orac...

libcap security update

2.48-5 - Fix integer overflow in libcapstrdup CVE-2023-2603 Resolves: rhbz2210637 - Correctly check pthreadcreate return value to avoid memory leak CVE-2023-2602 Resolves: rhbz2210644...

AlmaLinux 8 : libcap (ALSA-2023:4524)

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2023:4524 advisory. - A vulnerability was found in the pthreadcreate function in libcap. This issue may allow a malicious actor to use cause realpthreadcreate to return an...

ALSA-2023:4524 Moderate: libcap security update

Libcap is a library for getting and setting POSIX.1e formerly POSIX 6 draft 15 capabilities. Security Fixes: libcap: Integer Overflow in libcapstrdup CVE-2023-2603 libcap: Memory Leak on pthreadcreate Error CVE-2023-2602 For more details about the security issues, including the impact, a CVSS...

Moderate: libcap security update

Libcap is a library for getting and setting POSIX.1e formerly POSIX 6 draft 15 capabilities. Security Fixes: libcap: Integer Overflow in libcapstrdup CVE-2023-2603 libcap: Memory Leak on pthreadcreate Error CVE-2023-2602 For more details about the security issues, including the impact, a CVSS...

Amazon Linux 2 : libcap (ALAS-2023-2136)

The version of libcap installed on the remote host is prior to 2.54-1. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2023-2136 advisory. libcap is vulnerable to a denial of service caused by the error handling in wrappthreadcreate function, which will cause memory to be...

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : libcap (SUSE-SU-2023:2765-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:2765-1 advisory. - A vulnerability was found in the pthreadcreate function in libcap. This issue may allow a...

CBL Mariner 2.0 Security Update: libcap (CVE-2023-2602)

The version of libcap installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-2602 advisory. - A vulnerability was found in the pthreadcreate function in libcap. This issue May allow a malicious actor to...

MGASA-2023-0205 Updated libcap packages fix security vulnerability

A vulnerability was found in the pthreadcreate function in libcap. This issue may allow a malicious actor to use cause realpthreadcreate to return an error, which can exhaust the process memory. CVE-2023-2602 A vulnerability was found in libcap. This issue occurs in the libcapstrdup function and...

Updated libcap packages fix security vulnerability

A vulnerability was found in the pthreadcreate function in libcap. This issue may allow a malicious actor to use cause realpthreadcreate to return an error, which can exhaust the process memory. CVE-2023-2602 A vulnerability was found in libcap. This issue occurs in the libcapstrdup function and...

Ubuntu 20.04 LTS / 22.04 LTS / 23.04 : libcap2 vulnerabilities (USN-6166-1)

The remote Ubuntu 20.04 LTS / 22.04 LTS / 23.04 host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-6166-1 advisory. David Gstir discovered that libcap2 incorrectly handled certain return codes. An attacker could possibly use this issue to cause...

Amazon Linux 2023 : libcap, libcap-devel, libcap-static (ALAS2023-2023-195)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2023-195 advisory. libcap is vulnerable to a denial of service caused by the error handling in wrappthreadcreate function, which will cause memory to be leaked in the case of an error. CVE-2023-2602 Tenable has extracted...

CVE-2023-2602

A vulnerability was found in the pthreadcreate function in libcap. This issue may allow a malicious actor to use cause realpthreadcreate to return an error, which can exhaust the process memory...

AZL-27064 CVE-2023-2602 affecting package libcap for versions less than 2.60-2

A vulnerability was found in the pthreadcreate function in libcap. This issue may allow a malicious actor to use cause realpthreadcreate to return an error, which can exhaust the process memory...

CVE-2023-2602

A vulnerability was found in the pthreadcreate function in libcap. This issue may allow a malicious actor to use cause realpthreadcreate to return an error, which can exhaust the process memory...

CVE-2023-2602

CVE-2023-2602 affects the libcap library via the pthread_create() path, where error handling can cause memory leakage and potential local denial of service. Connected advisories show multiple vendors applying fixes (e.g., libcap2 updates in Debian 11, Amazon Linux 2/2023, AlmaLinux, Cloud Foundry...

CVE-2023-2602

A vulnerability was found in the pthreadcreate function in libcap. This issue may allow a malicious actor to use cause realpthreadcreate to return an error, which can exhaust the process memory...

CVE-2023-2602

A vulnerability was found in the pthreadcreate function in libcap. This issue may allow a malicious actor to use cause realpthreadcreate to return an error, which can exhaust the process memory...

CVE-2023-2602

A vulnerability was found in the pthreadcreate function in libcap. This issue may allow a malicious actor to use cause realpthreadcreate to return an error, which can exhaust the process memory...

Memory Leak

libcap is vulnerable to Memory Leak. The vulnerability exists in pthreadcreate function because the conditional statement of the return value is improperly checked which allows a malicious actor to use the function to return an error, which may exhaust the process memory...