AZL-56916

See a problem?

Import Source

https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-56916.json

JSON Data

https://api.test.osv.dev/v1/vulns/AZL-56916

Upstream

CVE-2025-1390

Published

2025-02-18T03:15:10Z

Modified

2026-04-01T05:19:46.358231Z

Summary

CVE-2025-1390 affecting package libcap for versions less than 2.60-3

Details

The PAM module pam_cap.so of libcap configuration supports group names starting with “@”, during actual parsing, configurations not starting with “@” are incorrectly recognized as group names. This may result in nonintended users being granted an inherited capability set, potentially leading to security risks. Attackers can exploit this vulnerability to achieve local privilege escalation on systems where /etc/security/capability.conf is used to configure user inherited privileges by constructing specific usernames.

References

https://nvd.nist.gov/vuln/detail/CVE-2025-1390

Affected packages

Azure Linux:2 / libcap

Package

Name: libcap
Purl: pkg:rpm/azure-linux/libcap

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.60-3

Database specific

source

"https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-56916.json"