2015-10-07
ALT-BU-2015-2674-1
Branch c7 update bulletin.
Closed vulnerabilities
Published: 2014-02-08
Modified: 2025-04-11
Modified: 2025-04-11
CVE-2011-4099
The capsh program in libcap before 2.22 does not change the current working directory when the --chroot option is specified, which allows local users to bypass the chroot restrictions via unspecified vectors.
Severity: MEDIUM (4.6)
Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P
References:
- http://rhn.redhat.com/errata/RHSA-2011-1694.html
- https://bugzilla.redhat.com/show_bug.cgi?id=722694
- https://sites.google.com/site/fullycapable/release-notes-for-libcap/releasenotesfor222
- http://rhn.redhat.com/errata/RHSA-2011-1694.html
- https://bugzilla.redhat.com/show_bug.cgi?id=722694
- https://sites.google.com/site/fullycapable/release-notes-for-libcap/releasenotesfor222