Download
| Alert*
oval:org.secpod.oval:def:501261
libcap is installed oval:org.secpod.oval:def:500246 The libcap packages provide a library and tools for getting and setting POSIX capabilities. It was found that capsh did not change into the new root when using the "--chroot" option. An application started via the "capsh --chroot" command could use this flaw to escape the chroot ... oval:org.secpod.oval:def:507902 Libcap is a library for getting and setting POSIX.1e draft 15 capabilities. Security Fix: * libcap: Integer Overflow in _libcap_strdup * libcap: Memory Leak on pthread_create Error For more details about the security issue, including the impact, a CVSS score, acknowledgments, and other related in ... oval:org.secpod.oval:def:89049046 This update for libcap fixes the following issues: * CVE-2023-2602: Fixed improper memory release in libcap/psx/psx.c:__wrap_pthread_create . * CVE-2023-2603: Fixed an integer overflow or wraparound in libcap/cap_alloc.c:_libcap_strdup . oval:org.secpod.oval:def:89049045 This update for libcap fixes the following issues: * CVE-2023-2603: Fixed an integer overflow or wraparound in libcap/cap_alloc.c:_libcap_strdup . oval:org.secpod.oval:def:19500232 libcap is vulnerable to a denial of service caused by the error handling in wrap_pthread_create function, which will cause memory to be leaked in the case of an error |