A TOCTOU race condition in libcap's `cap_set_file()` function (CVE-2026-4878) can be exploited for local privilege escalation. The vulnerability has a CVSS 3.1 score of 6.7 (Medium) and affects libcap_project libcap up to unspecified versions, including Red Hat Enterprise Linux 8.0, 9.0, and 10.0. For RHEL 10.0 EUS, the fix is provided in package version libcap-2.69-7.el10_0.1.
Red Hat Product Errata RHSA-2026:19456 - Security Advisory Issued: 2026-05-20 Updated: 2026-05-20 RHSA-2026:19456 - Security Advisory Overview Updated Packages Synopsis Important: libcap security update Type/Severity Security Advisory: Important Red Hat Lightspeed patch analysis Identify and remediate systems affected by this advisory. View affected systems Topic An update for libcap is now available for Red Hat Enterprise Linux 10.0 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. Description Libcap is a library for getting and setting POSIX.1e (formerly POSIX 6) draft 15 capabilities. Security Fix(es): libcap: libcap: Privilege escalation via TOCTOU race condition in cap_set_file() (CVE-2026-4878) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Solution For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 Affected Products Red Hat Enterprise Linux for x86_64 - Extended Update Support 10.0 x86_64 Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 10.0 s390x Red Hat Enterprise Linux for Power, little endian - Extended Update Support 10.0 ppc64le Red Hat Enterprise Linux for ARM 64 - Extended Update Support 10.0 aarch64 Red Hat Enterprise Linux for ARM 64 - 4 years of updates 10.0 aarch64 Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 10.0 s390x Red Hat Enterprise Linux for Power, little endian - 4 years of support 10.0 ppc64le Red Hat Enterprise Linux for x86_64 - 4 years of updates 10.0 x86_64 Fixes BZ - 2451615 - CVE-2026-4878 libcap: libcap: Privilege escalation via TOCTOU race condition in cap_set_file() CVEs CVE-2026-4878 References https://access.redhat.com/security/updates/classification/#important Note: More recent versions of these packages may be available. Click a package name for more details. Red Hat Enterprise Linux for x86_64 - Extended Update Support 10.0 SRPM libcap-2.69-7.el10_0.1.src.rpm SHA-256: 95c1e58f47f3b3707c7f2db766d8824d54cbc96f75153a2ede2551703b5ac4bc x86_64 libcap-2.69-7.el10_0.1.x86_64.rpm SHA-256: 4cb0584e3db86ec88c09882f6379da07231be15fd44d5d96d06d925f8cbc8e04 libcap-debuginfo-2.69-7.el10_0.1.x86_64.rpm SHA-256: 543bee939588d05e9173ab83534a554e665dbf99059d5f8a8cbc09d5dd81f3c9 libcap-debuginfo-2.69-7.el10_0.1.x86_64.rpm SHA-256: 543bee939588d05e9173ab83534a554e665dbf99059d5f8a8cbc09d5dd81f3c9 libcap-debugsource-2.69-7.el10_0.1.x86_64.rpm SHA-256: 6ca354c5e09f69fdca77b8072726121c81c27b30d306cd7207988d1d0b5dd736 libcap-debugsource-2.69-7.el10_0.1.x86_64.rpm SHA-256: 6ca354c5e09f69fdca77b8072726121c81c27b30d306cd7207988d1d0b5dd736 libcap-devel-2.69-7.el10_0.1.x86_64.rpm SHA-256: eb8c68fbe1e551680dd036ad13dcc462c9205a5988b320a6663839d754d23b20 Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 10.0 SRPM libcap-2.69-7.el10_0.1.src.rpm SHA-256: 95c1e58f47f3b3707c7f2db766d8824d54cbc96f75153a2ede2551703b5ac4bc s390x libcap-2.69-7.el10_0.1.s390x.rpm SHA-256: 733c27f46d23da7bff543cb68c8abb5babd6ca5ce77c9403f7da5f5caee8ee72 libcap-debuginfo-2.69-7.el10_0.1.s390x.rpm SHA-256: 23e851c802d3867506482dd841fff1f8133a32e6f945f72d9326f83738a3c451 libcap-debuginfo-2.69-7.el10_0.1.s390x.rpm SHA-256: 23e851c802d3867506482dd841fff1f8133a32e6f945f72d9326f83738a3c451 libcap-debugsource-2.69-7.el10_0.1.s390x.rpm SHA-256: a318cb1210c2bb2ae29de9349c77f862d37cd8dea07daa29d2ded0a3777345e4 libcap-debugsource-2.69-7.el10_0.1.s390x.rpm SHA-256: a318cb1210c2bb2ae29de9349c77f862d37cd8dea07daa29d2ded0a3777345e4 libcap-devel-2.69-7.el10_0.1.s390x.rpm SHA-256: fa029ac888cc0d92c1943e20135c99ca7d6300044e5219dab984cfc2990ab5e1 Red Hat Enterprise Linux for Power, little endian - Extended Update Support 10.0 SRPM libcap-2.69-7.el10_0.1.src.rpm SHA-256: 95c1e58f47f3b3707c7f2db766d8824d54cbc96f75153a2ede2551703b5ac4bc ppc64le libcap-2.69-7.el10_0.1.ppc64le.rpm SHA-256: 38058d3736203ef767f417abdf846b0071022f99560c80e1f7da108f4ad7f646 libcap-debuginfo-2.69-7.el10_0.1.ppc64le.rpm SHA-256: f5e9735192a659be47b604178ba8cea96711f1d7da9296f563ca910bd2b08c97 libcap-debuginfo-2.69-7.el10_0.1.ppc64le.rpm SHA-256: f5e9735192a659be47b604178ba8cea96711f1d7da9296f563ca910bd2b08c97 libcap-debugsource-2.69-7.el10_0.1.ppc64le.rpm SHA-256: 6f1729f86d711aa0936eaf015f9707c05bc1ec7576e97379fa62a3a9fbc041a6 libcap-debugsource-2.69-7.el10_0.1.ppc64le.rpm SHA-256: 6f1729f86d711aa0936eaf015f9707c05bc1ec7576e97379fa62a3a9fbc041a6 libcap-devel-2.69-7.el10_0.1.ppc64le.rpm SHA-256: 69dba7a5d16470bb4adfaef02863315dccc51ccf0a52932d5964aeb1f0216d94 Red Hat Enterprise Linux for ARM 64 - Extended Update Support 10.0 SRPM libcap-2.69-7.el10_0.1.src.rpm SHA-256: 95c1e58f47f3b3707c7f2db766d8824d54cbc96f75153a2ede2551703b5ac4bc aarch64 libcap-2.69-7.el10_0.1.aarch64.rpm SHA-256: 8c485104ccb28111d141c45613259dba5e9ee2004ca7881c2862cedaad9f8763 libcap-debuginfo-2.69-7.el10_0.1.aarch64.rpm SHA-256: c0e054203496a72b94b80cf53fb7c02a5347bf84e76a71f1bb41026a7e124433 libcap-debuginfo-2.69-7.el10_0.1.aarch64.rpm SHA-256: c0e054203496a72b94b80cf53fb7c02a5347bf84e76a71f1bb41026a7e124433 libcap-debugsource-2.69-7.el10_0.1.aarch64.rpm SHA-256: 826e568c8f5ec45c6cddfe00c670bbbeffabb276c4363ec6f14e3512a4581361 libcap-debugsource-2.69-7.el10_0.1.aarch64.rpm SHA-256: 826e568c8f5ec45c6cddfe00c670bbbeffabb276c4363ec6f14e3512a4581361 libcap-devel-2.69-7.el10_0.1.aarch64.rpm SHA-256: ec9be11329de0698696bf30402c198306169d98cceff6123ec417e01f3e067ed Red Hat Enterprise Linux for ARM 64 - 4 years of updates 10.0 SRPM libcap-2.69-7.el10_0.1.src.rpm SHA-256: 95c1e58f47f3b3707c7f2db766d8824d54cbc96f75153a2ede2551703b5ac4bc aarch64 libcap-2.69-7.el10_0.1.aarch64.rpm SHA-256: 8c485104ccb28111d141c45613259dba5e9ee2004ca7881c2862cedaad9f8763 libcap-debuginfo-2.69-7.el10_0.1.aarch64.rpm SHA-256: c0e054203496a72b94b80cf53fb7c02a5347bf84e76a71f1bb41026a7e124433 libcap-debuginfo-2.69-7.el10_0.1.aarch64.rpm SHA-256: c0e054203496a72b94b80cf53fb7c02a5347bf84e76a71f1bb41026a7e124433 libcap-debugsource-2.69-7.el10_0.1.aarch64.rpm SHA-256: 826e568c8f5ec45c6cddfe00c670bbbeffabb276c4363ec6f14e3512a4581361 libcap-debugsource-2.69-7.el10_0.1.aarch64.rpm SHA-256: 826e568c8f5ec45c6cddfe00c670bbbeffabb276c4363ec6f14e3512a4581361 libcap-devel-2.69-7.el10_0.1.aarch64.rpm SHA-256: ec9be11329de0698696bf30402c198306169d98cceff6123ec417e01f3e067ed Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 10.0 SRPM libcap-2.69-7.el10_0.1.src.rpm SHA-256: 95c1e58f47f3b3707c7f2db766d8824d54cbc96f75153a2ede2551703b5ac4bc s390x libcap-2.69-7.el10_0.1.s390x.rpm SHA-256: 733c27f46d23da7bff543cb68c8abb5babd6ca5ce77c9403f7da5f5caee8ee72 libcap-debuginfo-2.69-7.el10_0.1.s390x.rpm SHA-256: 23e851c802d3867506482dd841fff1f8133a32e6f945f72d9326f83738a3c451 libcap-debuginfo-2.69-7.el10_0.1.s390x.rpm SHA-256: 23e851c802d3867506482dd841fff1f8133a32e6f945f72d9326f83738a3c451 libcap-debugsource-2.69-7.el10_0.1.s390x.rpm SHA-256: a318cb1210c2bb2ae29de9349c77f862d37cd8dea07daa29d2ded0a3777345e4 libcap-debugsource-2.69-7.el10_0.1.s390x.rpm SHA-256: a318cb1210c2bb2ae29de9349c77f862d37cd8dea07daa29d2ded0a3777345e4 libcap-devel-2.69-7.el10_0.1.s390x.rpm SHA-256: fa029ac888cc0d92c1943e20135c99ca7d6300044e5219dab984cfc2990ab5e1 Red Hat Enterprise Linux for Power, little endian - 4 years of support 10.0 SRPM libcap-2.69-7.el10_0.1.src.rpm SHA-256: 95c1e58f47f3b3707c7f2db766d8824d54cbc96f75153a2ede2551703b5ac4bc ppc64le libcap-2.69-7.el10_0.1.ppc64le.rpm SHA-256: 38058d3736203ef767f417abdf846b0071022f99560c80e1f7da108f4ad7f646 libcap-debuginfo-2.69-7.el10_0.1.ppc64le.rpm SHA-256: f5e9735192a659be47b604178ba8cea96711f1d7da9296f563ca910bd2b08c97 libcap-debuginfo-2.69-7.el10_0.1.ppc64le.rpm SHA-256: f5e9735192a659be47b604178ba8cea96711f1d7da9296f563ca910bd2b08c97 libcap-debugsource-2.69-7.el10_0.1.ppc64le.rpm SHA-256: 6f1729f86d711aa0936eaf015f9707c05bc1ec7576e97379fa62a3a9fbc041a6 libcap-debugsource-2.69-7.el10_0.1.ppc64le.rpm SHA-256: 6f1729f86d711aa0936eaf015f9707c05bc1ec7576e97379fa62a3a9fbc041a6 libcap-devel-2.69-7.el10_0.1.ppc64le.rpm SHA-256: 69dba7a5d16470bb4adfaef02863315dccc51ccf0a52932d5964aeb1f0216d94 Red Hat Enterprise Linux for x86_64 - 4 years of updates 10.0 SRPM libcap-2.69-7.el10_0.1.src.rpm SHA-256: 95c1e58f47f3b3707c7f2db766d8824d54cbc96f75153a2ede2551703b5ac4bc x86_64 libcap-2.69-7.el10_0.1.x86_64.rpm SHA-256: 4cb0584e3db86ec88c09882f6379da07231be15fd44d5d96d06d925f8cbc8e04 libcap-debuginfo-2.69-7.el10_0.1.x86_64.rpm SHA-256: 543bee939588d05e9173ab83534a554e665dbf99059d5f8a8cbc09d5dd81f3c9 libcap-debuginfo-2.69-7.el10_0.1.x86_64.rpm SHA-256: 543bee939588d05e9173ab83534a554e665dbf99059d5f8a8cbc09d5dd81f3c9 libcap-debugsource-2.69-7.el10_0.1.x86_64.rpm SHA-256: 6ca354c5e09f69fdca77b8072726121c81c27b30d306cd7207988d1d0b5dd736 libcap-debugsource-2.69-7.el10_0.1.x86_64.rpm SHA-256: 6ca354c5e09f69fdca77b8072726121c81c27b30d306cd7207988d1d0b5dd736 libcap-devel-2.69-7.el10_0.1.x86_64.rpm SHA-256: eb8c68fbe1e551680dd036ad13dcc462c9205a5988b320a6663839d754d23b20 The Red Hat security contact is secalert@redhat.com . More contact details at https://access.redhat.com/security/team/contact/ .