CVE Vulnerabilities

CVE-2011-4099

Published: Feb 08, 2014 | Modified: Feb 10, 2014
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
4.6 MEDIUM
AV:L/AC:L/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

The capsh program in libcap before 2.22 does not change the current working directory when the –chroot option is specified, which allows local users to bypass the chroot restrictions via unspecified vectors.

Affected Software

Name Vendor Start Version End Version
Libcap Libcap 2.11 2.11
Libcap Libcap 2.14 2.14
Libcap Libcap 2.04 2.04
Libcap Libcap 2.18 2.18
Libcap Libcap 2.02 2.02
Libcap Libcap 2.00 2.00
Libcap Libcap 2.05 2.05
Libcap Libcap 2.16 2.16
Libcap Libcap 2.20 2.20
Libcap Libcap 2.01 2.01
Libcap Libcap 2.12 2.12
Libcap Libcap 2.08 2.08
Libcap Libcap 2.15 2.15
Libcap Libcap 2.19 2.19
Libcap Libcap 2.03 2.03
Libcap Libcap 2.13 2.13
Libcap Libcap 2.09 2.09
Libcap Libcap 2.17 2.17
Libcap Libcap 2.06 2.06
Libcap Libcap * 2.21
Libcap Libcap 2.07 2.07
Libcap Libcap 2.10 2.10

References