Описание
ELSA-2023-5071: libcap security update (MODERATE)
[2.48-9]
- Fix integer overflow in _libcap_strdup() (CVE-2023-2603) Resolves: rhbz#2210638
- Correctly check pthread_create() return value to avoid memory leak (CVE-2023-2602) Resolves: rhbz#2222198
Обновленные пакеты
Oracle Linux 9
Oracle Linux aarch64
libcap
2.48-9.el9_2
libcap-devel
2.48-9.el9_2
Oracle Linux x86_64
libcap
2.48-9.el9_2
libcap-devel
2.48-9.el9_2
Связанные CVE
Связанные уязвимости
CVSS3: 3.3
ubuntu
около 2 лет назад
A vulnerability was found in the pthread_create() function in libcap. This issue may allow a malicious actor to use cause __real_pthread_create() to return an error, which can exhaust the process memory.
CVSS3: 3.3
redhat
около 2 лет назад
A vulnerability was found in the pthread_create() function in libcap. This issue may allow a malicious actor to use cause __real_pthread_create() to return an error, which can exhaust the process memory.