Unrated severityNVD Advisory· Published Jun 6, 2023· Updated Aug 2, 2024
CVE-2023-2602
CVE-2023-2602
Description
A vulnerability was found in the pthread_create() function in libcap. This issue may allow a malicious actor to use cause __real_pthread_create() to return an error, which can exhaust the process memory.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
11(expand)+ 1 more
- (no CPE)
- (no CPE)range: NA
- osv-coords9 versionspkg:rpm/almalinux/libcappkg:rpm/almalinux/libcap-develpkg:rpm/opensuse/libcap&distro=openSUSE%20Leap%2015.4pkg:rpm/opensuse/libcap&distro=openSUSE%20Leap%2015.5pkg:rpm/opensuse/libcap&distro=openSUSE%20Leap%20Micro%205.3pkg:rpm/suse/libcap&distro=SUSE%20Linux%20Enterprise%20Micro%205.3pkg:rpm/suse/libcap&distro=SUSE%20Linux%20Enterprise%20Micro%205.4pkg:rpm/suse/libcap&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP4pkg:rpm/suse/libcap&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP5
< 2.48-5.el8_8+ 8 more
- (no CPE)range: < 2.48-5.el8_8
- (no CPE)range: < 2.48-5.el8_8
- (no CPE)range: < 2.63-150400.3.3.1
- (no CPE)range: < 2.63-150400.3.3.1
- (no CPE)range: < 2.63-150400.3.3.1
- (no CPE)range: < 2.63-150400.3.3.1
- (no CPE)range: < 2.63-150400.3.3.1
- (no CPE)range: < 2.63-150400.3.3.1
- (no CPE)range: < 2.63-150400.3.3.1
Patches
Vulnerability mechanics
References
4- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/EZ57ICDLMVYEREXQGZWL4GWI7FRJCRQT/mitrevendor-advisory
- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IPEGCFMCN5KGCFX5Y2VTKR732TTD4ADW/mitrevendor-advisory
- bugzilla.redhat.com/show_bug.cgimitre
- www.x41-dsec.de/static/reports/X41-libcap-Code-Review-2023-OSTIF-Final-Report.pdfmitre
News mentions
0No linked articles in our index yet.