- What: Security update for libcap in Red Hat Enterprise Linux 9
- Impact: Systems using libcap may be vulnerable to privilege escalation
Red Hat Product Errata RHSA-2026:19346 - Security Advisory Issued: 2026-05-19 Updated: 2026-05-19 RHSA-2026:19346 - Security Advisory Overview Updated Packages Synopsis Important: libcap security update Type/Severity Security Advisory: Important Red Hat Lightspeed patch analysis Identify and remediate systems affected by this advisory. View affected systems Topic An update for libcap is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. Description Libcap is a library for getting and setting POSIX.1e (formerly POSIX 6) draft 15 capabilities. Security Fix(es): libcap: libcap: Privilege escalation via TOCTOU race condition in cap_set_file() (CVE-2026-4878) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Solution For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 Affected Products Red Hat Enterprise Linux for x86_64 9 x86_64 Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.8 x86_64 Red Hat Enterprise Linux for IBM z Systems 9 s390x Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.8 s390x Red Hat Enterprise Linux for Power, little endian 9 ppc64le Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.8 ppc64le Red Hat Enterprise Linux for ARM 64 9 aarch64 Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.8 aarch64 Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.8 ppc64le Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.8 x86_64 Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.8 aarch64 Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.8 s390x Red Hat Enterprise Linux for x86_64 - Extended Life Cycle 9.8 x86_64 Red Hat Enterprise Linux for ARM 64 - Extended Life Cycle 9.8 aarch64 Red Hat Enterprise Linux for Power, little endian - Extended Life Cycle 9.8 ppc64le Red Hat Enterprise Linux for IBM z Systems - Extended Life Cycle 9.8 s390x Fixes BZ - 2451615 - CVE-2026-4878 libcap: libcap: Privilege escalation via TOCTOU race condition in cap_set_file() CVEs CVE-2026-4878 References https://access.redhat.com/security/updates/classification/#important Note: More recent versions of these packages may be available. Click a package name for more details. Red Hat Enterprise Linux for x86_64 9 SRPM libcap-2.48-10.el9_8.1.src.rpm SHA-256: 7f96d98c99f190b840985b3589183a3f1dc444e0932f256491b24d28c5031de3 x86_64 libcap-2.48-10.el9_8.1.i686.rpm SHA-256: aac0b7009721510df6bb7798ef9f998d441f6f27923b65671382b796d5a347d5 libcap-2.48-10.el9_8.1.x86_64.rpm SHA-256: d4805439b10fa551b7535cf30ca28d4d5862132c9c429b2b31221bea7f43263a libcap-debuginfo-2.48-10.el9_8.1.i686.rpm SHA-256: 2b437b58e9fe85077f997e7e9a544a0ff289c6d94cfd35ae314830c2c54509f0 libcap-debuginfo-2.48-10.el9_8.1.i686.rpm SHA-256: 2b437b58e9fe85077f997e7e9a544a0ff289c6d94cfd35ae314830c2c54509f0 libcap-debuginfo-2.48-10.el9_8.1.x86_64.rpm SHA-256: 954098016b00d235d0c7539d06adced6c1e6758172fcab516c7914d32193ee85 libcap-debuginfo-2.48-10.el9_8.1.x86_64.rpm SHA-256: 954098016b00d235d0c7539d06adced6c1e6758172fcab516c7914d32193ee85 libcap-debugsource-2.48-10.el9_8.1.i686.rpm SHA-256: aff20b07277e09a2fb244912dcee57e990ffa8f5bd88777c7f713e04388fc89c libcap-debugsource-2.48-10.el9_8.1.i686.rpm SHA-256: aff20b07277e09a2fb244912dcee57e990ffa8f5bd88777c7f713e04388fc89c libcap-debugsource-2.48-10.el9_8.1.x86_64.rpm SHA-256: da58e32aec4061437cabbafc2efb41f2304ef5b36819405c085e0b08fffb26aa libcap-debugsource-2.48-10.el9_8.1.x86_64.rpm SHA-256: da58e32aec4061437cabbafc2efb41f2304ef5b36819405c085e0b08fffb26aa libcap-devel-2.48-10.el9_8.1.i686.rpm SHA-256: f1c007c43d590435838776ad14e44e0e37d7c5b8215b628314c4ef9140e9c2a8 libcap-devel-2.48-10.el9_8.1.x86_64.rpm SHA-256: e8aaf19b3e9edab3368d9a348e544b98944a1a450e7e86b4db79bc423094c914 Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.8 SRPM libcap-2.48-10.el9_8.1.src.rpm SHA-256: 7f96d98c99f190b840985b3589183a3f1dc444e0932f256491b24d28c5031de3 x86_64 libcap-2.48-10.el9_8.1.i686.rpm SHA-256: aac0b7009721510df6bb7798ef9f998d441f6f27923b65671382b796d5a347d5 libcap-2.48-10.el9_8.1.x86_64.rpm SHA-256: d4805439b10fa551b7535cf30ca28d4d5862132c9c429b2b31221bea7f43263a libcap-debuginfo-2.48-10.el9_8.1.i686.rpm SHA-256: 2b437b58e9fe85077f997e7e9a544a0ff289c6d94cfd35ae314830c2c54509f0 libcap-debuginfo-2.48-10.el9_8.1.i686.rpm SHA-256: 2b437b58e9fe85077f997e7e9a544a0ff289c6d94cfd35ae314830c2c54509f0 libcap-debuginfo-2.48-10.el9_8.1.x86_64.rpm SHA-256: 954098016b00d235d0c7539d06adced6c1e6758172fcab516c7914d32193ee85 libcap-debuginfo-2.48-10.el9_8.1.x86_64.rpm SHA-256: 954098016b00d235d0c7539d06adced6c1e6758172fcab516c7914d32193ee85 libcap-debugsource-2.48-10.el9_8.1.i686.rpm SHA-256: aff20b07277e09a2fb244912dcee57e990ffa8f5bd88777c7f713e04388fc89c libcap-debugsource-2.48-10.el9_8.1.i686.rpm SHA-256: aff20b07277e09a2fb244912dcee57e990ffa8f5bd88777c7f713e04388fc89c libcap-debugsource-2.48-10.el9_8.1.x86_64.rpm SHA-256: da58e32aec4061437cabbafc2efb41f2304ef5b36819405c085e0b08fffb26aa libcap-debugsource-2.48-10.el9_8.1.x86_64.rpm SHA-256: da58e32aec4061437cabbafc2efb41f2304ef5b36819405c085e0b08fffb26aa libcap-devel-2.48-10.el9_8.1.i686.rpm SHA-256: f1c007c43d590435838776ad14e44e0e37d7c5b8215b628314c4ef9140e9c2a8 libcap-devel-2.48-10.el9_8.1.x86_64.rpm SHA-256: e8aaf19b3e9edab3368d9a348e544b98944a1a450e7e86b4db79bc423094c914 Red Hat Enterprise Linux for IBM z Systems 9 SRPM libcap-2.48-10.el9_8.1.src.rpm SHA-256: 7f96d98c99f190b840985b3589183a3f1dc444e0932f256491b24d28c5031de3 s390x libcap-2.48-10.el9_8.1.s390x.rpm SHA-256: 81145d3e7f8b833994c16e56a3693dac4f0f11505fc85129964c3cfd20a36d45 libcap-debuginfo-2.48-10.el9_8.1.s390x.rpm SHA-256: 4baa3853ef41df35e025ce4e3c87f788d0a3905812129d8492df70afb1928812 libcap-debuginfo-2.48-10.el9_8.1.s390x.rpm SHA-256: 4baa3853ef41df35e025ce4e3c87f788d0a3905812129d8492df70afb1928812 libcap-debugsource-2.48-10.el9_8.1.s390x.rpm SHA-256: fe9387615757599ba4b42bcf217d952a375da0166bc9c4deadb9131dd5964189 libcap-debugsource-2.48-10.el9_8.1.s390x.rpm SHA-256: fe9387615757599ba4b42bcf217d952a375da0166bc9c4deadb9131dd5964189 libcap-devel-2.48-10.el9_8.1.s390x.rpm SHA-256: 52e1ec25df9c02e7664ce49e7791b0f4c9c91e122e885b78cdba2c43f6b43e9f Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.8 SRPM libcap-2.48-10.el9_8.1.src.rpm SHA-256: 7f96d98c99f190b840985b3589183a3f1dc444e0932f256491b24d28c5031de3 s390x libcap-2.48-10.el9_8.1.s390x.rpm SHA-256: 81145d3e7f8b833994c16e56a3693dac4f0f11505fc85129964c3cfd20a36d45 libcap-debuginfo-2.48-10.el9_8.1.s390x.rpm SHA-256: 4baa3853ef41df35e025ce4e3c87f788d0a3905812129d8492df70afb1928812 libcap-debuginfo-2.48-10.el9_8.1.s390x.rpm SHA-256: 4baa3853ef41df35e025ce4e3c87f788d0a3905812129d8492df70afb1928812 libcap-debugsource-2.48-10.el9_8.1.s390x.rpm SHA-256: fe9387615757599ba4b42bcf217d952a375da0166bc9c4deadb9131dd5964189 libcap-debugsource-2.48-10.el9_8.1.s390x.rpm SHA-256: fe9387615757599ba4b42bcf217d952a375da0166bc9c4deadb9131dd5964189 libcap-devel-2.48-10.el9_8.1.s390x.rpm SHA-256: 52e1ec25df9c02e7664ce49e7791b0f4c9c91e122e885b78cdba2c43f6b43e9f Red Hat Enterprise Linux for Power, little endian 9 SRPM libcap-2.48-10.el9_8.1.src.rpm SHA-256: 7f96d98c99f190b840985b3589183a3f1dc444e0932f256491b24d28c5031de3 ppc64le libcap-2.48-10.el9_8.1.ppc64le.rpm SHA-256: a623e466f4e510ab474b45e306b85d5864b81a15325bf652c94caa7f171848c4 libcap-debuginfo-2.48-10.el9_8.1.ppc64le.rpm SHA-256: 63fc19ce5b0d2a8775954b70b9a96b3dc0ed526be25811c16f59890ac9a75782 libcap-debuginfo-2.48-10.el9_8.1.ppc64le.rpm SHA-256: 63fc19ce5b0d2a8775954b70b9a96b3dc0ed526be25811c16f59890ac9a75782 libcap-debugsource-2.48-10.el9_8.1.ppc64le.rpm SHA-256: c55a42406d1e7133b684e3b52bb1a5d6f31df9f5fa1409018c5ccae22fccbe00 libcap-debugsource-2.48-10.el9_8.1.ppc64le.rpm SHA-256: c55a42406d1e7133b684e3b52bb1a5d6f31df9f5fa1409018c5ccae22fccbe00 libcap-devel-2.48-10.el9_8.1.ppc64le.rpm SHA-256: 62dac959a75ea935c407dfa8de4e8413c2f2619ade415c38819732c4924e216f Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.8 SRPM libcap-2.48-10.el9_8.1.src.rpm SHA-256: 7f96d98c99f190b840985b3589183a3f1dc444e0932f256491b24d28c5031de3 ppc64le libcap-2.48-10.el9_8.1.ppc64le.rpm SHA-256: a623e466f4e510ab474b45e306b85d5864b81a15325bf652c94caa7f171848c4 libcap-debuginfo-2.48-10.el9_8.1.ppc64le.rpm SHA-256: 63fc19ce5b0d2a8775954b70b9a96b3dc0ed526be25811c16f59890ac9a75782 libcap-debuginfo-2.48-10.el9_8.1.ppc64le.rpm SHA-256: 63fc19ce5b0d2a8775954b70b9a96b3dc0ed526be25811c16f59890ac9a75782 libcap-debugsource-2.48-10.el9_8.1.ppc64le.rpm SHA-256: c55a42406d1e7133b684e3b52bb1a5d6f31df9f5fa1409018c5ccae22fccbe00 libcap-debugsource-2.48-10.el9_8.1.ppc64le.rpm SHA-256: c55a42406d1e7133b684e3b52bb1a5d6f31df9f5fa1409018c5ccae22fccbe00 libcap-devel-2.48-10.el9_8.1.ppc64le.rpm SHA-256: 62dac959a75ea935c407dfa8de4e8413c2f2619ade415c38819732c4924e216f Red Hat Enterprise Linux for ARM 64 9 SRPM libcap-2.48-10.el9_8.1.src.rpm SHA-256: 7f96d98c99f190b840985b3589183a3f1dc444e0932f256491b24d28c5031de3 aarch64 libcap-2.48-10.el9_8.1.aarch64.rpm SHA-256: 1ac3014c33b84d7a492b99d46d47940b096e034a3d5886e16ace7159724be012 libcap-debuginfo-2.48-10.el9_8.1.aarch64.rpm SHA-256: 7ac669cdec032c7c0277a765b8b83377ff1486c4568fb2f85bc09f12dff4f959 libcap-debuginfo-2.48-10.el9_8.1.aarch64.rpm SHA-256: 7ac669cdec032c7c0277a765b8b83377ff1486c4568fb2f85bc09f12dff4f959 libcap-debugsource-2.48-10.el9_8.1.aarch64.rpm SHA-256: 99655210fe1b17645d88424a8e47490a78977d8d87e141af74ff34e80edc2e99 libcap-debugsource-