VYPR
← All advisories
Unrated severityNVD Advisory· Published Feb 8, 2014· Updated Apr 29, 2026

CVE-2011-4099

CVE-2011-4099

Description

The capsh program in libcap before 2.22 does not change the current working directory when the --chroot option is specified, which allows local users to bypass the chroot restrictions via unspecified vectors.

Affected products

22
  • Libcap/Libcap22 versions
    cpe:2.3:a:libcap:libcap:*:*:*:*:*:*:*:*+ 21 more
    • cpe:2.3:a:libcap:libcap:*:*:*:*:*:*:*:*range: <=2.21
    • cpe:2.3:a:libcap:libcap:2.00:*:*:*:*:*:*:*
    • cpe:2.3:a:libcap:libcap:2.01:*:*:*:*:*:*:*
    • cpe:2.3:a:libcap:libcap:2.02:*:*:*:*:*:*:*
    • cpe:2.3:a:libcap:libcap:2.03:*:*:*:*:*:*:*
    • cpe:2.3:a:libcap:libcap:2.04:*:*:*:*:*:*:*
    • cpe:2.3:a:libcap:libcap:2.05:*:*:*:*:*:*:*
    • cpe:2.3:a:libcap:libcap:2.06:*:*:*:*:*:*:*
    • cpe:2.3:a:libcap:libcap:2.07:*:*:*:*:*:*:*
    • cpe:2.3:a:libcap:libcap:2.08:*:*:*:*:*:*:*
    • cpe:2.3:a:libcap:libcap:2.09:*:*:*:*:*:*:*
    • cpe:2.3:a:libcap:libcap:2.10:*:*:*:*:*:*:*
    • cpe:2.3:a:libcap:libcap:2.11:*:*:*:*:*:*:*
    • cpe:2.3:a:libcap:libcap:2.12:*:*:*:*:*:*:*
    • cpe:2.3:a:libcap:libcap:2.13:*:*:*:*:*:*:*
    • cpe:2.3:a:libcap:libcap:2.14:*:*:*:*:*:*:*
    • cpe:2.3:a:libcap:libcap:2.15:*:*:*:*:*:*:*
    • cpe:2.3:a:libcap:libcap:2.16:*:*:*:*:*:*:*
    • cpe:2.3:a:libcap:libcap:2.17:*:*:*:*:*:*:*
    • cpe:2.3:a:libcap:libcap:2.18:*:*:*:*:*:*:*
    • cpe:2.3:a:libcap:libcap:2.19:*:*:*:*:*:*:*
    • cpe:2.3:a:libcap:libcap:2.20:*:*:*:*:*:*:*

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

3

News mentions

0

No linked articles in our index yet.