rpm package
almalinux/libcap-devel
pkg:rpm/almalinux/libcap-devel
Vulnerabilities (3)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2026-4878 | Med | 6.7 | < 2.69-7.el10_1.1 | 2.69-7.el10_1.1 | Apr 9, 2026 | A flaw was found in libcap. A local unprivileged user can exploit a Time-of-check-to-time-of-use (TOCTOU) race condition in the `cap_set_file()` function. This allows an attacker with write access to a parent directory to redirect file capability updates to an attacker-controlled | |
| CVE-2023-2603 | — | < 2.48-5.el8_8 | 2.48-5.el8_8 | Jun 6, 2023 | A vulnerability was found in libcap. This issue occurs in the _libcap_strdup() function and can lead to an integer overflow if the input string is close to 4GiB. | ||
| CVE-2023-2602 | — | < 2.48-5.el8_8 | 2.48-5.el8_8 | Jun 6, 2023 | A vulnerability was found in the pthread_create() function in libcap. This issue may allow a malicious actor to use cause __real_pthread_create() to return an error, which can exhaust the process memory. |
- affected < 2.69-7.el10_1.1fixed 2.69-7.el10_1.1
A flaw was found in libcap. A local unprivileged user can exploit a Time-of-check-to-time-of-use (TOCTOU) race condition in the `cap_set_file()` function. This allows an attacker with write access to a parent directory to redirect file capability updates to an attacker-controlled
- CVE-2023-2603Jun 6, 2023affected < 2.48-5.el8_8fixed 2.48-5.el8_8
A vulnerability was found in libcap. This issue occurs in the _libcap_strdup() function and can lead to an integer overflow if the input string is close to 4GiB.
- CVE-2023-2602Jun 6, 2023affected < 2.48-5.el8_8fixed 2.48-5.el8_8
A vulnerability was found in the pthread_create() function in libcap. This issue may allow a malicious actor to use cause __real_pthread_create() to return an error, which can exhaust the process memory.