CVE-2011-4099

The capsh program in libcap before 2.22 does not change the current working directory when the --chroot option is specified, which allows local users to bypass the chroot restrictions via unspecified vectors.

Published: Feb 8, 2014
Updated: Apr 13, 2023
CVE: CVE-2011-4099
Severity: Low
Exploit:

CVSS v2:

Severity: Low
Score: 4.6
AV:L/AC:L/Au:N/C:P/I:P/A:P

CWEs:

CWE-264

Affected Software
References

Software	From	Fixed in
libcap / libcap	2.11	2.11.x
libcap / libcap	2.14	2.14.x
libcap / libcap	2.04	2.04.x
libcap / libcap	2.18	2.18.x
libcap / libcap	2.02	2.02.x
libcap / libcap	2.00	2.00.x
libcap / libcap	2.05	2.05.x
libcap / libcap	2.16	2.16.x
libcap / libcap	2.20	2.20.x
libcap / libcap	2.01	2.01.x
libcap / libcap	2.12	2.12.x
libcap / libcap	2.08	2.08.x
libcap / libcap	2.15	2.15.x
libcap / libcap	2.19	2.19.x
libcap / libcap	2.03	2.03.x
libcap / libcap	2.13	2.13.x
libcap / libcap	2.09	2.09.x
libcap / libcap	2.17	2.17.x
libcap / libcap	2.06	2.06.x
libcap / libcap	-	2.21.x
libcap / libcap	2.07	2.07.x
libcap / libcap	2.10	2.10.x

http://rhn.redhat.com/errata/RHSA-2011-1694.html
https://bugzilla.redhat.com/show_bug.cgi?id=722694
https://sites.google.com/site/fullycapable/release-notes-for-libcap/releasenotesfor222

Vulnerability Database

289,697

CVE-2011-4099