OESA-2025-1243
- Source
- https://www.openeuler.org/en/security/security-bulletins/detail/?id=openEuler-SA-2025-1243
- Import Source
- https://repo.openeuler.org/security/data/osv/OESA-2025-1243.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/OESA-2025-1243
- Upstream
- Published
- 2025-03-07T15:26:55Z
- Modified
- 2025-08-12T05:48:57.532307Z
- Summary
- libcap security update
- Details
-
This is a library for getting and setting POSIX.1e (formerly POSIX 6) draft 15 capabilities.
Security Fix(es):
The PAM module pam_cap.so of libcap configuration supports group names starting with “@”, during actual parsing, configurations not starting with “@” are incorrectly recognized as group names. This may result in nonintended users being granted an inherited capability set, potentially leading to security risks. Attackers can exploit this vulnerability to achieve local privilege escalation on systems where /etc/security/capability.conf is used to configure user inherited privileges by constructing specific usernames.(CVE-2025-1390)
- Database specific
{ "severity": "Medium" }- References
Affected packages
openEuler:20.03-LTS-SP4
libcap
Package
- Name
- libcap
- Purl
- pkg:rpm/openEuler/libcap&distro=openEuler-20.03-LTS-SP4
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed2.32-8.oe2003sp4
Ecosystem specific
{
"src": [
"libcap-2.32-8.oe2003sp4.src.rpm"
],
"aarch64": [
"libcap-2.32-8.oe2003sp4.aarch64.rpm",
"libcap-debuginfo-2.32-8.oe2003sp4.aarch64.rpm",
"libcap-debugsource-2.32-8.oe2003sp4.aarch64.rpm",
"libcap-devel-2.32-8.oe2003sp4.aarch64.rpm"
],
"noarch": [
"libcap-help-2.32-8.oe2003sp4.noarch.rpm"
],
"x86_64": [
"libcap-2.32-8.oe2003sp4.x86_64.rpm",
"libcap-debuginfo-2.32-8.oe2003sp4.x86_64.rpm",
"libcap-debugsource-2.32-8.oe2003sp4.x86_64.rpm",
"libcap-devel-2.32-8.oe2003sp4.x86_64.rpm"
]
}openEuler:22.03-LTS-SP3
libcap
Package
- Name
- libcap
- Purl
- pkg:rpm/openEuler/libcap&distro=openEuler-22.03-LTS-SP3
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed2.61-8.oe2203sp3
Ecosystem specific
{
"src": [
"libcap-2.61-8.oe2203sp3.src.rpm"
],
"aarch64": [
"libcap-2.61-8.oe2203sp3.aarch64.rpm",
"libcap-debuginfo-2.61-8.oe2203sp3.aarch64.rpm",
"libcap-debugsource-2.61-8.oe2203sp3.aarch64.rpm",
"libcap-devel-2.61-8.oe2203sp3.aarch64.rpm"
],
"noarch": [
"libcap-help-2.61-8.oe2203sp3.noarch.rpm"
],
"x86_64": [
"libcap-2.61-8.oe2203sp3.x86_64.rpm",
"libcap-debuginfo-2.61-8.oe2203sp3.x86_64.rpm",
"libcap-debugsource-2.61-8.oe2203sp3.x86_64.rpm",
"libcap-devel-2.61-8.oe2203sp3.x86_64.rpm"
]
}openEuler:22.03-LTS-SP4
libcap
Package
- Name
- libcap
- Purl
- pkg:rpm/openEuler/libcap&distro=openEuler-22.03-LTS-SP4
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed2.61-8.oe2203sp4
Ecosystem specific
{
"src": [
"libcap-2.61-8.oe2203sp4.src.rpm"
],
"aarch64": [
"libcap-2.61-8.oe2203sp4.aarch64.rpm",
"libcap-debuginfo-2.61-8.oe2203sp4.aarch64.rpm",
"libcap-debugsource-2.61-8.oe2203sp4.aarch64.rpm",
"libcap-devel-2.61-8.oe2203sp4.aarch64.rpm"
],
"noarch": [
"libcap-help-2.61-8.oe2203sp4.noarch.rpm"
],
"x86_64": [
"libcap-2.61-8.oe2203sp4.x86_64.rpm",
"libcap-debuginfo-2.61-8.oe2203sp4.x86_64.rpm",
"libcap-debugsource-2.61-8.oe2203sp4.x86_64.rpm",
"libcap-devel-2.61-8.oe2203sp4.x86_64.rpm"
]
}openEuler:24.03-LTS
libcap
Package
- Name
- libcap
- Purl
- pkg:rpm/openEuler/libcap&distro=openEuler-24.03-LTS
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed2.69-4.oe2403sp1
Ecosystem specific
{
"src": [
"libcap-2.69-4.oe2403.src.rpm",
"libcap-2.69-4.oe2403sp1.src.rpm"
],
"aarch64": [
"libcap-2.69-4.oe2403.aarch64.rpm",
"libcap-debuginfo-2.69-4.oe2403.aarch64.rpm",
"libcap-debugsource-2.69-4.oe2403.aarch64.rpm",
"libcap-devel-2.69-4.oe2403.aarch64.rpm",
"libcap-2.69-4.oe2403sp1.aarch64.rpm",
"libcap-debuginfo-2.69-4.oe2403sp1.aarch64.rpm",
"libcap-debugsource-2.69-4.oe2403sp1.aarch64.rpm",
"libcap-devel-2.69-4.oe2403sp1.aarch64.rpm"
],
"noarch": [
"libcap-help-2.69-4.oe2403.noarch.rpm",
"libcap-help-2.69-4.oe2403sp1.noarch.rpm"
],
"x86_64": [
"libcap-2.69-4.oe2403.x86_64.rpm",
"libcap-debuginfo-2.69-4.oe2403.x86_64.rpm",
"libcap-debugsource-2.69-4.oe2403.x86_64.rpm",
"libcap-devel-2.69-4.oe2403.x86_64.rpm",
"libcap-2.69-4.oe2403sp1.x86_64.rpm",
"libcap-debuginfo-2.69-4.oe2403sp1.x86_64.rpm",
"libcap-debugsource-2.69-4.oe2403sp1.x86_64.rpm",
"libcap-devel-2.69-4.oe2403sp1.x86_64.rpm"
]
}openEuler:24.03-LTS-SP1
libcap
Package
- Name
- libcap
- Purl
- pkg:rpm/openEuler/libcap&distro=openEuler-24.03-LTS-SP1
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed2.69-4.oe2403sp1
Ecosystem specific
{
"src": [
"libcap-2.69-4.oe2403sp1.src.rpm"
],
"aarch64": [
"libcap-2.69-4.oe2403sp1.aarch64.rpm",
"libcap-debuginfo-2.69-4.oe2403sp1.aarch64.rpm",
"libcap-debugsource-2.69-4.oe2403sp1.aarch64.rpm",
"libcap-devel-2.69-4.oe2403sp1.aarch64.rpm"
],
"noarch": [
"libcap-help-2.69-4.oe2403sp1.noarch.rpm"
],
"x86_64": [
"libcap-2.69-4.oe2403sp1.x86_64.rpm",
"libcap-debuginfo-2.69-4.oe2403sp1.x86_64.rpm",
"libcap-debugsource-2.69-4.oe2403sp1.x86_64.rpm",
"libcap-devel-2.69-4.oe2403sp1.x86_64.rpm"
]
}