Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found -5 articles for you...
219
security advisoryprivilege escalationimportantRocky Linux 10 RLSA-2026-12426 Major Memory Vulnerability in libseccomp
Important: libcap security update. {"type": "TYPE_SECURITY", "shortCode": "RL", "name": "RLSA-2026:12423", "synopsis": "Important: libcap security update", "severity": "SEVERITY_IMPORTANT", "topic": "An update is available for libcap.\nThis update affects Rocky Linux 10.\nA Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list", "description": "Libcap is a library for getting and setting POSIX.1e (formerly POSIX 6) draft 15 capabilities.\n\nSecurity Fix(es):\n\n* libcap: libcap: Privilege escalation via TOCTOU race condition in cap_set_file() (CVE-2026-4878)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "solution": null, "affectedProducts": ["Rocky Linux 10"], "fixes": [{"ticket": "2451615", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2451615", "description": ""}], "cves": [{"name": "CVE-2026-4878", "sourceBy": "MITRE", "sourceLink": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-4878", "cvss3ScoringVector": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H", "cvss3BaseScore": "6.7", "cwe": "CWE-367"}], "references": [], "publishedAt": "2026-05-03T12:06:49.800095Z", "rpms": {"Rocky Linux 10": {"nvras": ["libcap-debugsource-0:2.69-7.el10_1.1.ppc64le.rpm", "libcap-0:2.69-7.el10_1.1.src.rpm", "libcap-0:2.69-7.el10_1.1.ppc64le.rpm", "libcap-0:2.69-7.el10_1.1.x86_64.rpm", "libcap-devel-0:2.69-7.el10_1.1.aarch64.rpm", "libcap-debugsource-0:2.69-7.el10_1.1.aarch64.rpm", "libcap-debugsource-0:2.69-7.el10_1.1.s390x.rpm", "libcap-debuginfo-0:2.69-7.el10_1.1.x86_64.rpm", "libcap-devel-0:2.69-7.el10_1.1.x86_64.rpm", "libcap-debugsource-0:2.69-7.el10_1.1.x86_64.rpm", "libcap-0:2.69-7.el10_1.1.aarch64.rpm", "libcap-debuginfo-0:2.69-7.el10_1.1.aarch64.rpm", "libcap-devel-0:2.69-7.el10_1.1.ppc64le.rpm","libcap-debuginfo-0:2.69-7.el10_1.1.s390x.rpm", "libcap-0:2.69-7.el10_1.1.s390x.rpm", "libcap-debuginfo-0:2.69-7.el10_1.1.ppc64le.rpm", "libcap-devel-0:2.69-7.el10_1.1.s390x.rpm"]}}, "rebootSuggested": false, "buildReferences": []}. Important security update for Rocky Linux' libcap to fix privilege escalation issues related to a TOCTOU race condition.. Rocky Linux, libcap, security update, privilege escalation, CVE-2026-4878. . Severity: Important. LinuxSecurity.com Team
May 03, 2026
•Important
Rocky Linux
219
security advisoryprivilege escalationimportantImportant security update for Rocky Linux 9 libcap due to CVE-2026-4879
Important: libcap security update. {"type": "TYPE_SECURITY", "shortCode": "RL", "name": "RLSA-2026:12441", "synopsis": "Important: libcap security update", "severity": "SEVERITY_IMPORTANT", "topic": "An update is available for libcap.\nThis update affects Rocky Linux 9.\nA Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list", "description": "Libcap is a library for getting and setting POSIX.1e (formerly POSIX 6) draft 15 capabilities.\n\nSecurity Fix(es):\n\n* libcap: libcap: Privilege escalation via TOCTOU race condition in cap_set_file() (CVE-2026-4878)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "solution": null, "affectedProducts": ["Rocky Linux 9"], "fixes": [{"ticket": "2451615", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2451615", "description": ""}], "cves": [{"name": "CVE-2026-4878", "sourceBy": "MITRE", "sourceLink": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-4878", "cvss3ScoringVector": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H", "cvss3BaseScore": "6.7", "cwe": "CWE-367"}], "references": [], "publishedAt": "2026-05-03T12:03:41.515195Z", "rpms": {"Rocky Linux 9": {"nvras": ["libcap-0:2.48-10.el9_7.1.aarch64.rpm", "libcap-0:2.48-10.el9_7.1.i686.rpm", "libcap-0:2.48-10.el9_7.1.ppc64le.rpm", "libcap-0:2.48-10.el9_7.1.s390x.rpm", "libcap-0:2.48-10.el9_7.1.src.rpm", "libcap-0:2.48-10.el9_7.1.x86_64.rpm", "libcap-debuginfo-0:2.48-10.el9_7.1.aarch64.rpm", "libcap-debuginfo-0:2.48-10.el9_7.1.i686.rpm", "libcap-debuginfo-0:2.48-10.el9_7.1.ppc64le.rpm", "libcap-debuginfo-0:2.48-10.el9_7.1.s390x.rpm", "libcap-debuginfo-0:2.48-10.el9_7.1.x86_64.rpm", "libcap-debugsource-0:2.48-10.el9_7.1.aarch64.rpm", "libcap-debugsource-0:2.48-10.el9_7.1.i686.rpm", "libcap-debugsource-0:2.48-10.el9_7.1.ppc64le.rpm","libcap-debugsource-0:2.48-10.el9_7.1.s390x.rpm", "libcap-debugsource-0:2.48-10.el9_7.1.x86_64.rpm", "libcap-devel-0:2.48-10.el9_7.1.aarch64.rpm", "libcap-devel-0:2.48-10.el9_7.1.i686.rpm", "libcap-devel-0:2.48-10.el9_7.1.ppc64le.rpm", "libcap-devel-0:2.48-10.el9_7.1.s390x.rpm", "libcap-devel-0:2.48-10.el9_7.1.x86_64.rpm"]}}, "rebootSuggested": false, "buildReferences": []}. Important libcap security update for Rocky Linux 9 addresses critical privilege escalation risks. Update recommended to enhance system integrity.. Rocky Linux 9, libcap update, security advisory, privilege escalation, system integrity. . Severity: Important. LinuxSecurity.com Team
May 03, 2026
•Important
Rocky Linux
172
security advisoryUbuntuimportantUbuntu 25.10 libcap Important Escalation Risk CVE-2026-4878
libcap could be made to modify capabilities on arbitrary files.. ========================================================================== Ubuntu Security Notice USN-8193-1 April 21, 2026 libcap2 vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 25.10 - Ubuntu 24.04 LTS - Ubuntu 22.04 LTS Summary: libcap could be made to modify capabilities on arbitrary files. Software Description: - libcap2: POSIX 1003.1e capabilities library Details: Ali Raza discovered that libcap incorrectly handled file capability updates. A local attacker could possibly use this issue to inject or strip capabilities into arbitrary executables and escalate privileges. Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 25.10 libcap2 1:2.75-7ubuntu2.2 libcap2-bin 1:2.75-7ubuntu2.2 Ubuntu 24.04 LTS libcap2 1:2.66-5ubuntu2.4 libcap2-bin 1:2.66-5ubuntu2.4 Ubuntu 22.04 LTS libcap2 1:2.44-1ubuntu0.22.04.3 libcap2-bin 1:2.44-1ubuntu0.22.04.3 In general, a standard system update will make all the necessary changes. References: https://ubuntu.com/security/notices/USN-8193-1 CVE-2026-4878 Package Information: https://launchpad.net/ubuntu/+source/libcap2/1:2.75-7ubuntu2.2 https://launchpad.net/ubuntu/+source/libcap2/1:2.66-5ubuntu2.4 https://launchpad.net/ubuntu/+source/libcap2/1:2.44-1ubuntu0.22.04.3 . A local attacker could exploit libcap in Ubuntu to modify capabilities on files, prompting an important security update.. Ubuntu Security, libcap update, privilege escalation, capabilities library. . Severity: Important. LinuxSecurity.com Team
Apr 21, 2026
•Important
Ubuntu
172
security advisorypackage updatemedium severityUbuntu 24.10 USN-7287-1 Medium: libcap2 allowed unintended capabilities
libcap2 would allow unintended capabilities.. ========================================================================== Ubuntu Security Notice USN-7287-1 February 24, 2025 libcap2 vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 24.10 - Ubuntu 24.04 LTS - Ubuntu 22.04 LTS - Ubuntu 20.04 LTS Summary: libcap2 would allow unintended capabilities. Software Description: - libcap2: POSIX 1003.1e capabilities (library) Details: Tianjia Zhang discovered the libcap2 PAM module pam_cap incorrectly handled parsing group names in the configuration file. This could result in certain users being granted capabilities, contrary to expectations. Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 24.10 libpam-cap 1:2.66-5ubuntu3.1 Ubuntu 24.04 LTS libpam-cap 1:2.66-5ubuntu2.2 Ubuntu 22.04 LTS libpam-cap 1:2.44-1ubuntu0.22.04.2 Ubuntu 20.04 LTS libpam-cap 1:2.32-1ubuntu0.2 After a standard system update you need to reboot your computer to make all the necessary changes. References: https://ubuntu.com/security/notices/USN-7287-1 CVE-2025-1390 Package Information: https://launchpad.net/ubuntu/+source/libcap2/1:2.66-5ubuntu3.1 https://launchpad.net/ubuntu/+source/libcap2/1:2.66-5ubuntu2.2 https://launchpad.net/ubuntu/+source/libcap2/1:2.44-1ubuntu0.22.04.2 https://launchpad.net/ubuntu/+source/libcap2/1:2.32-1ubuntu0.2 . Ubuntu Security Bulletin USN-7288-2 highlights a vulnerability in libcap2 that may grant excessive permissions. Immediate patching necessary.. libcap2 security, Ubuntu update, PAM module issue, capabilities management, security advisory. . Severity: Medium. LinuxSecurity.com Team
Feb 24, 2025
•Medium
Ubuntu
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!