A Time-of-Check Time-of-Use (TOCTOU) race condition in the `cap_set_file()` function of libcap (CVE-2026-4878, CVSS 6.7) can be exploited for local privilege escalation. The NVD data indicates affected versions include libcap_project libcap up to the unspecified patched version, and Red Hat Enterprise Linux versions 8.0, 9.0, and 10.0. For RHEL 9.6 EUS, the fix is provided in libcap version 2.48-9.el9_6.1, as detailed in the Red Hat advisory.
Red Hat Product Errata RHSA-2026:19458 - Security Advisory Issued: 2026-05-20 Updated: 2026-05-20 RHSA-2026:19458 - Security Advisory Overview Updated Packages Synopsis Important: libcap security update Type/Severity Security Advisory: Important Red Hat Lightspeed patch analysis Identify and remediate systems affected by this advisory. View affected systems Topic An update for libcap is now available for Red Hat Enterprise Linux 9.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. Description Libcap is a library for getting and setting POSIX.1e (formerly POSIX 6) draft 15 capabilities. Security Fix(es): libcap: libcap: Privilege escalation via TOCTOU race condition in cap_set_file() (CVE-2026-4878) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Solution For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 Affected Products Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.6 x86_64 Red Hat Enterprise Linux Server - AUS 9.6 x86_64 Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.6 s390x Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.6 ppc64le Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.6 aarch64 Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.6 ppc64le Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.6 x86_64 Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.6 aarch64 Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.6 s390x Red Hat Enterprise Linux for x86_64 - Extended Life Cycle 9.6 x86_64 Red Hat Enterprise Linux for ARM 64 - Extended Life Cycle 9.6 aarch64 Red Hat Enterprise Linux for Power, little endian - Extended Life Cycle 9.6 ppc64le Red Hat Enterprise Linux for IBM z Systems - Extended Life Cycle 9.6 s390x Fixes BZ - 2451615 - CVE-2026-4878 libcap: libcap: Privilege escalation via TOCTOU race condition in cap_set_file() CVEs CVE-2026-4878 References https://access.redhat.com/security/updates/classification/#important Note: More recent versions of these packages may be available. Click a package name for more details. Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.6 SRPM libcap-2.48-9.el9_6.1.src.rpm SHA-256: e702337abe888c8c2889d33943ff530c6b889a5ab2c3c963835deeee85b62881 x86_64 libcap-2.48-9.el9_6.1.i686.rpm SHA-256: 12db65a921eb30ddeabe1361bc704fc66f35ec8b2683f75b9695ecf64dee8fe8 libcap-2.48-9.el9_6.1.x86_64.rpm SHA-256: d3c10eb5a3efd532e12746871a4c10e15f2f4bf21628eae2236c03912ddf88f2 libcap-debuginfo-2.48-9.el9_6.1.i686.rpm SHA-256: e19a5538d253cd4a707cafb81f0923513c97decb21d87b547a1bbb82110ce6d5 libcap-debuginfo-2.48-9.el9_6.1.i686.rpm SHA-256: e19a5538d253cd4a707cafb81f0923513c97decb21d87b547a1bbb82110ce6d5 libcap-debuginfo-2.48-9.el9_6.1.x86_64.rpm SHA-256: bde2f7b2880be25fedac01b15afd49b359db6a4dacb2d019c718bc0c14488faf libcap-debuginfo-2.48-9.el9_6.1.x86_64.rpm SHA-256: bde2f7b2880be25fedac01b15afd49b359db6a4dacb2d019c718bc0c14488faf libcap-debugsource-2.48-9.el9_6.1.i686.rpm SHA-256: fd143e4cd24645d9a5040a1e091dc35f2ef1b1ce0c06d5ff3f9713b46261b259 libcap-debugsource-2.48-9.el9_6.1.i686.rpm SHA-256: fd143e4cd24645d9a5040a1e091dc35f2ef1b1ce0c06d5ff3f9713b46261b259 libcap-debugsource-2.48-9.el9_6.1.x86_64.rpm SHA-256: cae82a1560011d72a288fe914397ac5ecfa686ddf4b2acf97365528e37ff77d7 libcap-debugsource-2.48-9.el9_6.1.x86_64.rpm SHA-256: cae82a1560011d72a288fe914397ac5ecfa686ddf4b2acf97365528e37ff77d7 libcap-devel-2.48-9.el9_6.1.i686.rpm SHA-256: 570b881ed144939f645fe9b50509c2c7686b0f648e9230f109aab86cdc98168a libcap-devel-2.48-9.el9_6.1.x86_64.rpm SHA-256: b1fba9e007e80fe907912e37bad66229e6e5a08aa6c65d0a0556180e7d11b758 Red Hat Enterprise Linux Server - AUS 9.6 SRPM libcap-2.48-9.el9_6.1.src.rpm SHA-256: e702337abe888c8c2889d33943ff530c6b889a5ab2c3c963835deeee85b62881 x86_64 libcap-2.48-9.el9_6.1.i686.rpm SHA-256: 12db65a921eb30ddeabe1361bc704fc66f35ec8b2683f75b9695ecf64dee8fe8 libcap-2.48-9.el9_6.1.x86_64.rpm SHA-256: d3c10eb5a3efd532e12746871a4c10e15f2f4bf21628eae2236c03912ddf88f2 libcap-debuginfo-2.48-9.el9_6.1.i686.rpm SHA-256: e19a5538d253cd4a707cafb81f0923513c97decb21d87b547a1bbb82110ce6d5 libcap-debuginfo-2.48-9.el9_6.1.i686.rpm SHA-256: e19a5538d253cd4a707cafb81f0923513c97decb21d87b547a1bbb82110ce6d5 libcap-debuginfo-2.48-9.el9_6.1.x86_64.rpm SHA-256: bde2f7b2880be25fedac01b15afd49b359db6a4dacb2d019c718bc0c14488faf libcap-debuginfo-2.48-9.el9_6.1.x86_64.rpm SHA-256: bde2f7b2880be25fedac01b15afd49b359db6a4dacb2d019c718bc0c14488faf libcap-debugsource-2.48-9.el9_6.1.i686.rpm SHA-256: fd143e4cd24645d9a5040a1e091dc35f2ef1b1ce0c06d5ff3f9713b46261b259 libcap-debugsource-2.48-9.el9_6.1.i686.rpm SHA-256: fd143e4cd24645d9a5040a1e091dc35f2ef1b1ce0c06d5ff3f9713b46261b259 libcap-debugsource-2.48-9.el9_6.1.x86_64.rpm SHA-256: cae82a1560011d72a288fe914397ac5ecfa686ddf4b2acf97365528e37ff77d7 libcap-debugsource-2.48-9.el9_6.1.x86_64.rpm SHA-256: cae82a1560011d72a288fe914397ac5ecfa686ddf4b2acf97365528e37ff77d7 libcap-devel-2.48-9.el9_6.1.i686.rpm SHA-256: 570b881ed144939f645fe9b50509c2c7686b0f648e9230f109aab86cdc98168a libcap-devel-2.48-9.el9_6.1.x86_64.rpm SHA-256: b1fba9e007e80fe907912e37bad66229e6e5a08aa6c65d0a0556180e7d11b758 Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.6 SRPM libcap-2.48-9.el9_6.1.src.rpm SHA-256: e702337abe888c8c2889d33943ff530c6b889a5ab2c3c963835deeee85b62881 s390x libcap-2.48-9.el9_6.1.s390x.rpm SHA-256: 186e922e6e21ce04738a4451b5090893a0a36281e7950346e17464ffce15d055 libcap-debuginfo-2.48-9.el9_6.1.s390x.rpm SHA-256: 14ede54e4043368cd8179ebcf7b94d6746ee98e3df8f757dc95741568b9a97a7 libcap-debuginfo-2.48-9.el9_6.1.s390x.rpm SHA-256: 14ede54e4043368cd8179ebcf7b94d6746ee98e3df8f757dc95741568b9a97a7 libcap-debugsource-2.48-9.el9_6.1.s390x.rpm SHA-256: 0a5fc7d0214965484c6b00b4a858869a48dc5153b9e176f93445a3966224adba libcap-debugsource-2.48-9.el9_6.1.s390x.rpm SHA-256: 0a5fc7d0214965484c6b00b4a858869a48dc5153b9e176f93445a3966224adba libcap-devel-2.48-9.el9_6.1.s390x.rpm SHA-256: c739bf77640a625e90f5592fbf88a99425be8db123cf51e30d21b8ed1cd4accb Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.6 SRPM libcap-2.48-9.el9_6.1.src.rpm SHA-256: e702337abe888c8c2889d33943ff530c6b889a5ab2c3c963835deeee85b62881 ppc64le libcap-2.48-9.el9_6.1.ppc64le.rpm SHA-256: cbbe30703ece26ad6da9a414dda0ab79092603eb898096ce70c649dd4589fd5d libcap-debuginfo-2.48-9.el9_6.1.ppc64le.rpm SHA-256: 22bb344ec145c0fd1976a280ff83f4f2550f7b6dfd99a0f3ac800fb40e9943c2 libcap-debuginfo-2.48-9.el9_6.1.ppc64le.rpm SHA-256: 22bb344ec145c0fd1976a280ff83f4f2550f7b6dfd99a0f3ac800fb40e9943c2 libcap-debugsource-2.48-9.el9_6.1.ppc64le.rpm SHA-256: b91fd9f3449604b9787101f6a5cf23be8847fd77af5f4dda8227250bf3176795 libcap-debugsource-2.48-9.el9_6.1.ppc64le.rpm SHA-256: b91fd9f3449604b9787101f6a5cf23be8847fd77af5f4dda8227250bf3176795 libcap-devel-2.48-9.el9_6.1.ppc64le.rpm SHA-256: 4631b7690aaa4a80860e2fe8f5ed8dea1080b52d963a68e532e8a396ff7d7463 Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.6 SRPM libcap-2.48-9.el9_6.1.src.rpm SHA-256: e702337abe888c8c2889d33943ff530c6b889a5ab2c3c963835deeee85b62881 aarch64 libcap-2.48-9.el9_6.1.aarch64.rpm SHA-256: 490d172dedbf730ec818705d575439dfb1e2911adade24bf7249d048f8a15d33 libcap-debuginfo-2.48-9.el9_6.1.aarch64.rpm SHA-256: 7cbb3a601714f45095513944a63dffceb5c77c1290936fad913d5e39b1ada90c libcap-debuginfo-2.48-9.el9_6.1.aarch64.rpm SHA-256: 7cbb3a601714f45095513944a63dffceb5c77c1290936fad913d5e39b1ada90c libcap-debugsource-2.48-9.el9_6.1.aarch64.rpm SHA-256: 54fe3219beadf1c87d42c5d9db1141e34b052212bc9adf7717534eee13e7cea7 libcap-debugsource-2.48-9.el9_6.1.aarch64.rpm SHA-256: 54fe3219beadf1c87d42c5d9db1141e34b052212bc9adf7717534eee13e7cea7 libcap-devel-2.48-9.el9_6.1.aarch64.rpm SHA-256: 3ed47b69918a59a46a1a626363de2ec24b961f9d2c558ce1c117d4cbbb8afee2 Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.6 SRPM libcap-2.48-9.el9_6.1.src.rpm SHA-256: e702337abe888c8c2889d33943ff530c6b889a5ab2c3c963835deeee85b62881 ppc64le libcap-2.48-9.el9_6.1.ppc64le.rpm SHA-256: cbbe30703ece26ad6da9a414dda0ab79092603eb898096ce70c649dd4589fd5d libcap-debuginfo-2.48-9.el9_6.1.ppc64le.rpm SHA-256: 22bb344ec145c0fd1976a280ff83f4f2550f7b6dfd99a0f3ac800fb40e9943c2 libcap-debuginfo-2.48-9.el9_6.1.ppc64le.rpm SHA-256: 22bb344ec145c0fd1976a280ff83f4f2550f7b6dfd99a0f3ac800fb40e9943c2 libcap-debugsource-2.48-9.el9_6.1.ppc64le.rpm SHA-256: b91fd9f3449604b9787101f6a5cf23be8847fd77af5f4dda8227250bf3176795 libcap-debugsource-2.48-9.el9_6.1.ppc64le.rpm SHA-256: b91fd9f3449604b9787101f6a5cf23be8847fd77af5f4dda8227250bf3176795 libcap-devel-2.48-9.el9_6.1.ppc64le.rpm SHA-256: 4631b7690aaa4a80860e2fe8f5ed8dea1080b52d963a68e532e8a396ff7d7463 Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.6 SRPM libcap-2.48-9.el9_6.1.src.rpm SHA-256: e702337abe888c8c2889d33943ff530c6b889a5ab2c3c963835deeee85b62881 x86_64 libcap-2.48-9.el9_6.1.i686.rpm SHA-256: 12db65a921eb30ddeabe1361bc704fc66f35ec8b2683f75b9695ecf64dee8fe8 libcap-2.48-9.el9_6.1.x86_64.rpm SHA-256: d3c10eb5a3efd532e12746871a4c10e15f2f4bf21628eae2236c03912ddf88f2 libcap-debuginfo-2.48-9.el9_6.1.i686.rpm SHA-256: e19a5538d253cd4a707cafb81f0923513c97decb21d87b547a1bbb82110ce6d5 libcap-debuginfo-2.48-9.el9_6.1.i686.rpm SHA-256: e19a5538d253cd4a707cafb81f0923513c97decb21d87b547a1bbb82110ce6d5 libcap-debuginfo-2.48-9.el9_6.1.x86_64.rpm SHA-256: bde2f7b2880be25fedac01b15afd49b359db6a4dacb2d019c718bc0c14488faf l