Описание
A vulnerability was found in libcap. This issue occurs in the _libcap_strdup() function and can lead to an integer overflow if the input string is close to 4GiB.
Отчет
This vulnerability is rated by the security researchers who discovered it (linked in external references, see section 4.1.2) as a Moderate impact.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux 6 | compat-libcap1 | Out of support scope | ||
| Red Hat Enterprise Linux 6 | libcap | Out of support scope | ||
| Red Hat Enterprise Linux 7 | compat-libcap1 | Out of support scope | ||
| Red Hat Enterprise Linux 7 | libcap | Out of support scope | ||
| Red Hat Enterprise Linux 8 | libcap | Fixed | RHSA-2023:4524 | 08.08.2023 |
| Red Hat Enterprise Linux 8.6 Extended Update Support | libcap | Fixed | RHSA-2023:7400 | 21.11.2023 |
| Red Hat Enterprise Linux 9 | libcap | Fixed | RHSA-2023:5071 | 12.09.2023 |
| Red Hat Enterprise Linux 9 | libcap | Fixed | RHSA-2023:5071 | 12.09.2023 |
| Red Hat Enterprise Linux 9.0 Extended Update Support | libcap | Fixed | RHSA-2024:0436 | 25.01.2024 |
Показывать по
10
Дополнительная информация
Статус:
Moderate
Дефект:
CWE-190
https://bugzilla.redhat.com/show_bug.cgi?id=2209113libcap: Integer Overflow in _libcap_strdup()
7.8 High
CVSS3
Связанные уязвимости
CVSS3: 7.8
ubuntu
около 2 лет назад
A vulnerability was found in libcap. This issue occurs in the _libcap_strdup() function and can lead to an integer overflow if the input string is close to 4GiB.
CVSS3: 7.8
nvd
около 2 лет назад
A vulnerability was found in libcap. This issue occurs in the _libcap_strdup() function and can lead to an integer overflow if the input string is close to 4GiB.
CVSS3: 7.8
debian
около 2 лет назад
A vulnerability was found in libcap. This issue occurs in the _libcap_ ...
7.8 High
CVSS3