UbuntuUpdates.org

Package "libcap2"

Name: libcap2

Description:

POSIX 1003.1e capabilities (library)

Latest version: 1:2.32-1ubuntu0.1
Release: focal (20.04)
Level: security
Repository: main
Homepage: https://sites.google.com/site/fullycapable/

Links


Download "libcap2"


Other versions of "libcap2" in Focal

Repository Area Version
base main 1:2.32-1
updates main 1:2.32-1ubuntu0.1

Packages in group

Deleted packages are displayed in grey.


Changelog

Version: 1:2.32-1ubuntu0.1 2023-06-14 15:07:08 UTC

  libcap2 (1:2.32-1ubuntu0.1) focal-security; urgency=medium

  * SECURITY UPDATE: process memory exhaustion in pthread_create()
    - debian/patches/CVE-2023-2602.patch: correct the check of
      pthread_create()'s return value in libcap/psx.c.
    - CVE-2023-2602
  * SECURITY UPDATE: integer overflow in _libcap_strdup()
    - debian/patches/CVE-2023-2603.patch: properly handle large strings in
      libcap/cap_alloc.c.
    - CVE-2023-2603

 -- Marc Deslauriers <email address hidden> Wed, 07 Jun 2023 09:02:37 -0400

CVE-2023-2602 A vulnerability was found in the pthread_create() function in libcap. This issue may allow a malicious actor to use cause __real_pthread_create() to
CVE-2023-2603 A vulnerability was found in libcap. This issue occurs in the _libcap_strdup() function and can lead to an integer overflow if the input string is cl



About   -   Send Feedback to @ubuntu_updates