ALAS2023-2023-195


Amazon Linux 2023 Security Advisory: ALAS-2023-195
Advisory Release Date: 2023-06-05 16:38 Pacific
Advisory Updated Date: 2023-06-07 20:09 Pacific
Severity: Low

Issue Overview:

libcap is vulnerable to a denial of service caused by the error handling in wrap_pthread_create() function, which will cause memory to be leaked in the case of an error. (CVE-2023-2602)


Affected Packages:

libcap


Issue Correction:
Run dnf update libcap --releasever 2023.0.20230607 to update your system.

New Packages:
aarch64:
    libcap-static-2.48-2.amzn2023.0.3.aarch64
    libcap-debugsource-2.48-2.amzn2023.0.3.aarch64
    libcap-2.48-2.amzn2023.0.3.aarch64
    libcap-debuginfo-2.48-2.amzn2023.0.3.aarch64
    libcap-devel-2.48-2.amzn2023.0.3.aarch64

src:
    libcap-2.48-2.amzn2023.0.3.src

x86_64:
    libcap-debuginfo-2.48-2.amzn2023.0.3.x86_64
    libcap-debugsource-2.48-2.amzn2023.0.3.x86_64
    libcap-static-2.48-2.amzn2023.0.3.x86_64
    libcap-2.48-2.amzn2023.0.3.x86_64
    libcap-devel-2.48-2.amzn2023.0.3.x86_64