Oval Definition:oval:com.redhat.rhsa:def:20111694
Revision Date:2011-12-06Version:643
Title:RHSA-2011:1694: libcap security and bug fix update (Low)
Description:The libcap packages provide a library and tools for getting and setting POSIX capabilities.

  • It was found that capsh did not change into the new root when using the "--chroot" option. An application started via the "capsh --chroot" command could use this flaw to escape the chroot restrictions. (CVE-2011-4099)

    This update also fixes the following bug:

  • Previously, the libcap packages did not contain the capsh(1) manual page. With this update, the capsh(1) manual page is included. (BZ#730957)

    All libcap users are advised to upgrade to these updated packages, which contain backported patches to correct these issues.
    • Family:unixClass:patch
    Status:Reference(s):CVE-2011-4099
    RHSA-2011:1694
    RHSA-2011:1694-03
    RHSA-2011:1694-03
    Platform(s):Red Hat Enterprise Linux 6
    		Product(s):
    Definition Synopsis
  • Red Hat Enterprise Linux must be installed
  • OR Package Information
  • Red Hat Enterprise Linux 6 is installed
  • AND
  • libcap is earlier than 0:2.16-5.5.el6
  • AND libcap is signed with Red Hat redhatrelease2 key
  • libcap-devel is earlier than 0:2.16-5.5.el6
  • AND libcap-devel is signed with Red Hat redhatrelease2 key
    • BACK