UbuntuUpdates.org

Package "libpam-cap"

Name: libpam-cap

Description:

POSIX 1003.1e capabilities (PAM module)

Latest version: 1:2.32-1ubuntu0.1
Release: focal (20.04)
Level: updates
Repository: main
Head package: libcap2
Homepage: https://sites.google.com/site/fullycapable/

Links


Download "libpam-cap"


Other versions of "libpam-cap" in Focal

Repository Area Version
base main 1:2.32-1
security main 1:2.32-1ubuntu0.1

Changelog

Version: 1:2.32-1ubuntu0.1 2023-06-14 16:07:02 UTC

  libcap2 (1:2.32-1ubuntu0.1) focal-security; urgency=medium

  * SECURITY UPDATE: process memory exhaustion in pthread_create()
    - debian/patches/CVE-2023-2602.patch: correct the check of
      pthread_create()'s return value in libcap/psx.c.
    - CVE-2023-2602
  * SECURITY UPDATE: integer overflow in _libcap_strdup()
    - debian/patches/CVE-2023-2603.patch: properly handle large strings in
      libcap/cap_alloc.c.
    - CVE-2023-2603

 -- Marc Deslauriers <email address hidden> Wed, 07 Jun 2023 09:02:37 -0400

CVE-2023-2602 A vulnerability was found in the pthread_create() function in libcap. This issue may allow a malicious actor to use cause __real_pthread_create() to
CVE-2023-2603 A vulnerability was found in libcap. This issue occurs in the _libcap_strdup() function and can lead to an integer overflow if the input string is cl



About   -   Send Feedback to @ubuntu_updates