Lucene search
UbuntuUSN-6166-1HistoryJun 14, 2023 - 12:00 a.m.
libcap2 vulnerabilities
2023-06-1400:00:00
ubuntu.com
31
ubuntu
libcap2
denial of service
memory consumption
code execution
cve-2023-2602
cve-2023-2603
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
7.8 High
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
14.2%
Releases
- Ubuntu 23.04
- Ubuntu 22.10
- Ubuntu 22.04 LTS
- Ubuntu 20.04 LTS
Packages
- libcap2 - POSIX 1003.1e capabilities (library)
Details
David Gstir discovered that libcap2 incorrectly handled certain return
codes. An attacker could possibly use this issue to cause libcap2 to
consume memory, leading to a denial of service. (CVE-2023-2602)
Richard Weinberger discovered that libcap2 incorrectly handled certain long
input strings. An attacker could use this issue to cause libcap2 to crash,
resulting in a denial of service, or possibly execute arbitrary code.
(CVE-2023-2603)
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Ubuntu | 23.04 | noarch | libcap2 | < 1:2.66-3ubuntu2.1 | UNKNOWN |
| Ubuntu | 23.04 | noarch | libcap-dev | < 1:2.66-3ubuntu2.1 | UNKNOWN |
| Ubuntu | 23.04 | noarch | libcap-dev-dbgsym | < 1:2.66-3ubuntu2.1 | UNKNOWN |
| Ubuntu | 23.04 | noarch | libcap2-bin | < 1:2.66-3ubuntu2.1 | UNKNOWN |
| Ubuntu | 23.04 | noarch | libcap2-bin-dbgsym | < 1:2.66-3ubuntu2.1 | UNKNOWN |
| Ubuntu | 23.04 | noarch | libcap2-dbgsym | < 1:2.66-3ubuntu2.1 | UNKNOWN |
| Ubuntu | 23.04 | noarch | libpam-cap | < 1:2.66-3ubuntu2.1 | UNKNOWN |
| Ubuntu | 23.04 | noarch | libpam-cap-dbgsym | < 1:2.66-3ubuntu2.1 | UNKNOWN |
| Ubuntu | 22.10 | noarch | libcap2 | < 1:2.44-1ubuntu0.22.10.1 | UNKNOWN |
| Ubuntu | 22.10 | noarch | libcap-dev | < 1:2.44-1ubuntu0.22.10.1 | UNKNOWN |
Related
fedora
fedora
[SECURITY] Fedora 38 Update: libcap-2.48-7.fc38
2023-11-30 03:35:33
[SECURITY] Fedora 39 Update: libcap-2.48-8.fc39
2023-11-29 01:35:51
nessus
nessus
Fedora 38 : libcap (2023-5911638116)
2023-11-29 00:00:00
SUSE SLED15 / SLES15 / openSUSE 15 Security Update : libcap (SUSE-SU-2023:2765-1)
2023-07-04 00:00:00
AlmaLinux 8 : libcap (ALSA-2023:4524)
2023-08-09 00:00:00
osv
osv
Moderate: libcap security update
2023-08-24 04:20:17
libcap2 vulnerabilities
2023-06-14 13:40:25
Moderate: libcap security update
2023-09-12 00:00:00
rocky
rocky
libcap security update
2023-08-24 04:20:17
almalinux
almalinux
Moderate: libcap security update
2023-08-08 00:00:00
Moderate: libcap security update
2023-09-12 00:00:00
redhat
redhat
(RHSA-2023:4524) Moderate: libcap security update
2023-08-08 07:21:01
(RHSA-2023:7400) Moderate: libcap security update
2023-11-21 09:47:16
(RHSA-2023:5071) Moderate: libcap security update
2023-09-12 07:42:19
oraclelinux
oraclelinux
libcap security update
2023-09-13 00:00:00
libcap security update
2023-08-09 00:00:00
openvas
openvas
Fedora: Security Advisory for libcap (FEDORA-2023-ad944c2d34)
2023-11-29 00:00:00
Fedora: Security Advisory for libcap (FEDORA-2023-5911638116)
2023-12-01 00:00:00
Mageia: Security Advisory (MGASA-2023-0205)
2023-06-29 00:00:00
cloudfoundry
cloudfoundry
USN-6166-1: libcap2 vulnerabilities | Cloud Foundry
2023-06-29 00:00:00
mageia
mageia
Updated libcap packages fix security vulnerability
2023-06-28 08:21:41
photon
photon
Important Photon OS Security Update - PHSA-2023-4.0-0400
2023-06-02 00:00:00
Important Photon OS Security Update - PHSA-2023-5.0-0020
2023-06-07 00:00:00
cbl_mariner
cbl_mariner
CVE-2023-2603 affecting package libcap for versions less than 2.60-2
2023-06-27 20:56:13
CVE-2023-2603 affecting package libcap 2.26-2
2023-07-28 23:16:55
CVE-2023-2602 affecting package libcap for versions less than 2.60-2
2023-06-27 20:56:13
redos
redos
ROS-20240404-11
2024-04-04 00:00:00
cve
cve
CVE-2023-2603
2023-06-06 20:15:13
CVE-2023-2602
2023-06-06 20:15:12
prion
prion
Integer overflow
2023-06-06 20:15:00
Design/Logic Flaw
2023-06-06 20:15:00
ubuntu
ubuntu
libcap2 vulnerability
2023-06-19 00:00:00
veracode
veracode
Integer Overflow
2023-06-05 11:41:52
Memory Leak
2023-06-05 11:42:05
alpinelinux
alpinelinux
CVE-2023-2603
2023-06-06 20:15:13
CVE-2023-2602
2023-06-06 20:15:12
redhatcve
redhatcve
CVE-2023-2603
2023-05-29 04:40:12
CVE-2023-2602
2023-05-29 04:40:07
debiancve
debiancve
CVE-2023-2603
2023-06-06 20:15:13
CVE-2023-2602
2023-06-06 20:15:12
nvd
nvd
CVE-2023-2603
2023-06-06 20:15:13
CVE-2023-2602
2023-06-06 20:15:12
rosalinux
rosalinux
Advisory ROSA-SA-2023-2309
2023-12-19 08:40:45
cvelist
cvelist
CVE-2023-2603
2023-06-06 00:00:00
CVE-2023-2602
2023-06-06 00:00:00
ubuntucve
ubuntucve
CVE-2023-2603
2023-05-15 00:00:00
CVE-2023-2602
2023-05-15 00:00:00
amazon
amazon
Low: libcap
2023-07-17 17:39:00
ibm
ibm
Security Bulletin: Multiple Vulnerabilities in CloudPak for Watson AIOPs
2023-05-31 17:23:24
Security Bulletin: Multiple Vulnerabilities in CloudPak for Watson AIOPs
2023-05-31 17:22:48
hp
hp
HP ThinPro 8.0 SP 7 Security Updates
2024-01-26 00:00:00
oracle
oracle
Oracle Critical Patch Update Advisory - October 2023
2023-10-17 00:00:00
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
7.8 High
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
14.2%
Related for USN-6166-1