Test ID:	1.3.6.1.4.1.25623.1.0.870710
Category:	Red Hat Local Security Checks
Title:	RedHat Update for libcap RHSA-2011:1694-03
Summary:	The remote host is missing an update for the 'libcap'; package(s) announced via the referenced advisory.
Description:	Summary: The remote host is missing an update for the 'libcap' package(s) announced via the referenced advisory. Vulnerability Insight: The libcap packages provide a library and tools for getting and setting POSIX capabilities. It was found that capsh did not change into the new root when using the '--chroot' option. An application started via the 'capsh --chroot' command could use this flaw to escape the chroot restrictions. (CVE-2011-4099) This update also fixes the following bug: * Previously, the libcap packages did not contain the capsh(1) manual page. With this update, the capsh(1) manual page is included. (BZ#730957) All libcap users are advised to upgrade to these updated packages, which contain backported patches to correct these issues. Affected Software/OS: libcap on Red Hat Enterprise Linux Desktop (v. 6), Red Hat Enterprise Linux Server (v. 6), Red Hat Enterprise Linux Workstation (v. 6) Solution: Please Install the Updated Packages. CVSS Score: 4.6 CVSS Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2011-4099 RHSA-2011:1694 http://rhn.redhat.com/errata/RHSA-2011-1694.html https://bugzilla.redhat.com/show_bug.cgi?id=722694 https://sites.google.com/site/fullycapable/release-notes-for-libcap/releasenotesfor222
Copyright	Copyright (C) 2012 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.