rpm package
suse/libcap&distro=SUSE Linux Enterprise Micro 5.3
pkg:rpm/suse/libcap&distro=SUSE%20Linux%20Enterprise%20Micro%205.3
Vulnerabilities (3)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2026-4878 | Med | 6.7 | < 2.63-150400.3.6.1 | 2.63-150400.3.6.1 | Apr 9, 2026 | A flaw was found in libcap. A local unprivileged user can exploit a Time-of-check-to-time-of-use (TOCTOU) race condition in the `cap_set_file()` function. This allows an attacker with write access to a parent directory to redirect file capability updates to an attacker-controlled | |
| CVE-2023-2603 | — | < 2.63-150400.3.3.1 | 2.63-150400.3.3.1 | Jun 6, 2023 | A vulnerability was found in libcap. This issue occurs in the _libcap_strdup() function and can lead to an integer overflow if the input string is close to 4GiB. | ||
| CVE-2023-2602 | — | < 2.63-150400.3.3.1 | 2.63-150400.3.3.1 | Jun 6, 2023 | A vulnerability was found in the pthread_create() function in libcap. This issue may allow a malicious actor to use cause __real_pthread_create() to return an error, which can exhaust the process memory. |
- affected < 2.63-150400.3.6.1fixed 2.63-150400.3.6.1
A flaw was found in libcap. A local unprivileged user can exploit a Time-of-check-to-time-of-use (TOCTOU) race condition in the `cap_set_file()` function. This allows an attacker with write access to a parent directory to redirect file capability updates to an attacker-controlled
- CVE-2023-2603Jun 6, 2023affected < 2.63-150400.3.3.1fixed 2.63-150400.3.3.1
A vulnerability was found in libcap. This issue occurs in the _libcap_strdup() function and can lead to an integer overflow if the input string is close to 4GiB.
- CVE-2023-2602Jun 6, 2023affected < 2.63-150400.3.3.1fixed 2.63-150400.3.3.1
A vulnerability was found in the pthread_create() function in libcap. This issue may allow a malicious actor to use cause __real_pthread_create() to return an error, which can exhaust the process memory.