A TOCTOU race condition in libcap's `cap_set_file()` function (CVE-2026-4878, CVSS 6.7) can allow local privilege escalation. The vulnerability affects libcap_project libcap up to unspecified versions and Red Hat Enterprise Linux versions 8.0, 9.0, and 10.0. The advisory provides updated packages for RHEL 9.2 variants, such as libcap-2.48-9.el9_2.1, to remediate the issue.
Red Hat Product Errata RHSA-2026:21254 - Security Advisory Issued: 2026-05-27 Updated: 2026-05-27 RHSA-2026:21254 - Security Advisory Overview Updated Packages Synopsis Important: libcap security update Type/Severity Security Advisory: Important Red Hat Lightspeed patch analysis Identify and remediate systems affected by this advisory. View affected systems Topic An update for libcap is now available for Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. Description Libcap is a library for getting and setting POSIX.1e (formerly POSIX 6) draft 15 capabilities. Security Fix(es): libcap: libcap: Privilege escalation via TOCTOU race condition in cap_set_file() (CVE-2026-4878) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Solution For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 Affected Products Red Hat Enterprise Linux Server - AUS 9.2 x86_64 Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.2 ppc64le Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.2 x86_64 Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.2 aarch64 Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.2 s390x Red Hat Enterprise Linux for x86_64 - Extended Life Cycle 9.2 x86_64 Red Hat Enterprise Linux for ARM 64 - Extended Life Cycle 9.2 aarch64 Red Hat Enterprise Linux for Power, little endian - Extended Life Cycle 9.2 ppc64le Red Hat Enterprise Linux for IBM z Systems - Extended Life Cycle 9.2 s390x Fixes BZ - 2451615 - CVE-2026-4878 libcap: libcap: Privilege escalation via TOCTOU race condition in cap_set_file() CVEs CVE-2026-4878 References https://access.redhat.com/security/updates/classification/#important Note: More recent versions of these packages may be available. Click a package name for more details. Red Hat Enterprise Linux Server - AUS 9.2 SRPM libcap-2.48-9.el9_2.1.src.rpm SHA-256: 5b025c8337812627976017fa76bbed7e69924c85fcb3b59f6459c5b470cea5d7 x86_64 libcap-2.48-9.el9_2.1.i686.rpm SHA-256: 329e1d0003a7581d21e1cf77e8db244d5b981b0fec020744a78d74398488ef44 libcap-2.48-9.el9_2.1.x86_64.rpm SHA-256: a40743af9404048129682e845a740cb996854bdba637e545402ff5813ca62878 libcap-debuginfo-2.48-9.el9_2.1.i686.rpm SHA-256: 762733bf6379e60156d6e117ec69520f26e8a31be0eec9cb7930059d6b6bdac5 libcap-debuginfo-2.48-9.el9_2.1.i686.rpm SHA-256: 762733bf6379e60156d6e117ec69520f26e8a31be0eec9cb7930059d6b6bdac5 libcap-debuginfo-2.48-9.el9_2.1.x86_64.rpm SHA-256: a998794a2f0e857271405f90d237ab483d4d87744782d5bd09e2c1f87aebf292 libcap-debuginfo-2.48-9.el9_2.1.x86_64.rpm SHA-256: a998794a2f0e857271405f90d237ab483d4d87744782d5bd09e2c1f87aebf292 libcap-debugsource-2.48-9.el9_2.1.i686.rpm SHA-256: 2d4f6f2d63305dee4a7efdb39a72f8022bb5c3fe7e6daa5ee5951bcc17e46d77 libcap-debugsource-2.48-9.el9_2.1.i686.rpm SHA-256: 2d4f6f2d63305dee4a7efdb39a72f8022bb5c3fe7e6daa5ee5951bcc17e46d77 libcap-debugsource-2.48-9.el9_2.1.x86_64.rpm SHA-256: d03bfd540b37f3eb4a174ae6299ea537c14393aa553b8ef6ca71bd4b182b1e6d libcap-debugsource-2.48-9.el9_2.1.x86_64.rpm SHA-256: d03bfd540b37f3eb4a174ae6299ea537c14393aa553b8ef6ca71bd4b182b1e6d libcap-devel-2.48-9.el9_2.1.i686.rpm SHA-256: a76b8d44ae0813def8006e3335bb04e56040550362b02f2b1e9b8c8dbad574b5 libcap-devel-2.48-9.el9_2.1.x86_64.rpm SHA-256: 12ff96a23e949dc369762c64ef4e4e705b3221f7f1393c7fdba63193644f87b3 Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.2 SRPM libcap-2.48-9.el9_2.1.src.rpm SHA-256: 5b025c8337812627976017fa76bbed7e69924c85fcb3b59f6459c5b470cea5d7 ppc64le libcap-2.48-9.el9_2.1.ppc64le.rpm SHA-256: a7466feec459f883b75b9567874d1173ed76c9373b688e37b4746f46dc2c6429 libcap-debuginfo-2.48-9.el9_2.1.ppc64le.rpm SHA-256: c86011c9768ebf9f96f8280daae1cb5c55aaa70dc63e66e49da3878e666307a6 libcap-debuginfo-2.48-9.el9_2.1.ppc64le.rpm SHA-256: c86011c9768ebf9f96f8280daae1cb5c55aaa70dc63e66e49da3878e666307a6 libcap-debugsource-2.48-9.el9_2.1.ppc64le.rpm SHA-256: 0df28a55bf8b5dd2b1495ec4d1940594f0d11432810daa3d3be5d6d7bea89432 libcap-debugsource-2.48-9.el9_2.1.ppc64le.rpm SHA-256: 0df28a55bf8b5dd2b1495ec4d1940594f0d11432810daa3d3be5d6d7bea89432 libcap-devel-2.48-9.el9_2.1.ppc64le.rpm SHA-256: bd7d5313aed7faa28c6227b2047fbd1a07b6d7c3018e10d16dcfc762456dea02 Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.2 SRPM libcap-2.48-9.el9_2.1.src.rpm SHA-256: 5b025c8337812627976017fa76bbed7e69924c85fcb3b59f6459c5b470cea5d7 x86_64 libcap-2.48-9.el9_2.1.i686.rpm SHA-256: 329e1d0003a7581d21e1cf77e8db244d5b981b0fec020744a78d74398488ef44 libcap-2.48-9.el9_2.1.x86_64.rpm SHA-256: a40743af9404048129682e845a740cb996854bdba637e545402ff5813ca62878 libcap-debuginfo-2.48-9.el9_2.1.i686.rpm SHA-256: 762733bf6379e60156d6e117ec69520f26e8a31be0eec9cb7930059d6b6bdac5 libcap-debuginfo-2.48-9.el9_2.1.i686.rpm SHA-256: 762733bf6379e60156d6e117ec69520f26e8a31be0eec9cb7930059d6b6bdac5 libcap-debuginfo-2.48-9.el9_2.1.x86_64.rpm SHA-256: a998794a2f0e857271405f90d237ab483d4d87744782d5bd09e2c1f87aebf292 libcap-debuginfo-2.48-9.el9_2.1.x86_64.rpm SHA-256: a998794a2f0e857271405f90d237ab483d4d87744782d5bd09e2c1f87aebf292 libcap-debugsource-2.48-9.el9_2.1.i686.rpm SHA-256: 2d4f6f2d63305dee4a7efdb39a72f8022bb5c3fe7e6daa5ee5951bcc17e46d77 libcap-debugsource-2.48-9.el9_2.1.i686.rpm SHA-256: 2d4f6f2d63305dee4a7efdb39a72f8022bb5c3fe7e6daa5ee5951bcc17e46d77 libcap-debugsource-2.48-9.el9_2.1.x86_64.rpm SHA-256: d03bfd540b37f3eb4a174ae6299ea537c14393aa553b8ef6ca71bd4b182b1e6d libcap-debugsource-2.48-9.el9_2.1.x86_64.rpm SHA-256: d03bfd540b37f3eb4a174ae6299ea537c14393aa553b8ef6ca71bd4b182b1e6d libcap-devel-2.48-9.el9_2.1.i686.rpm SHA-256: a76b8d44ae0813def8006e3335bb04e56040550362b02f2b1e9b8c8dbad574b5 libcap-devel-2.48-9.el9_2.1.x86_64.rpm SHA-256: 12ff96a23e949dc369762c64ef4e4e705b3221f7f1393c7fdba63193644f87b3 Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.2 SRPM libcap-2.48-9.el9_2.1.src.rpm SHA-256: 5b025c8337812627976017fa76bbed7e69924c85fcb3b59f6459c5b470cea5d7 aarch64 libcap-2.48-9.el9_2.1.aarch64.rpm SHA-256: 7b117f201a3103d0043981e65093cac1f556919a2b3c11d4b29829f77b655dd2 libcap-debuginfo-2.48-9.el9_2.1.aarch64.rpm SHA-256: ee67d5a744e3306385be39cc2282f082278c3e9c5574de869706b14b05b4c078 libcap-debuginfo-2.48-9.el9_2.1.aarch64.rpm SHA-256: ee67d5a744e3306385be39cc2282f082278c3e9c5574de869706b14b05b4c078 libcap-debugsource-2.48-9.el9_2.1.aarch64.rpm SHA-256: aa17260e18bf486a69abb25f5425721e1989eed3f81349f51c455d4911cc9a6a libcap-debugsource-2.48-9.el9_2.1.aarch64.rpm SHA-256: aa17260e18bf486a69abb25f5425721e1989eed3f81349f51c455d4911cc9a6a libcap-devel-2.48-9.el9_2.1.aarch64.rpm SHA-256: 2bc4b4fa3e146e1feb43044703a82f1fcff5c42147a39925422d0364da0861eb Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.2 SRPM libcap-2.48-9.el9_2.1.src.rpm SHA-256: 5b025c8337812627976017fa76bbed7e69924c85fcb3b59f6459c5b470cea5d7 s390x libcap-2.48-9.el9_2.1.s390x.rpm SHA-256: 6849691fcbac0d670f990c4d2f486581eb8e6724cd76c53638c7b2da38063d74 libcap-debuginfo-2.48-9.el9_2.1.s390x.rpm SHA-256: 487e5a74603d894829a3bd002d390eab61846c570141b7eaae12bc837fece712 libcap-debuginfo-2.48-9.el9_2.1.s390x.rpm SHA-256: 487e5a74603d894829a3bd002d390eab61846c570141b7eaae12bc837fece712 libcap-debugsource-2.48-9.el9_2.1.s390x.rpm SHA-256: 933d1d424846d9b34e8b71b5ec17d400879bf7faad43cc2671da7e4ee8923b2f libcap-debugsource-2.48-9.el9_2.1.s390x.rpm SHA-256: 933d1d424846d9b34e8b71b5ec17d400879bf7faad43cc2671da7e4ee8923b2f libcap-devel-2.48-9.el9_2.1.s390x.rpm SHA-256: 38219a3a48c0efcc3614c7febfdbef61f5bfd2b04425b2e1b986a6729dbcf963 Red Hat Enterprise Linux for x86_64 - Extended Life Cycle 9.2 SRPM libcap-2.48-9.el9_2.1.src.rpm SHA-256: 5b025c8337812627976017fa76bbed7e69924c85fcb3b59f6459c5b470cea5d7 x86_64 libcap-2.48-9.el9_2.1.i686.rpm SHA-256: 329e1d0003a7581d21e1cf77e8db244d5b981b0fec020744a78d74398488ef44 libcap-2.48-9.el9_2.1.x86_64.rpm SHA-256: a40743af9404048129682e845a740cb996854bdba637e545402ff5813ca62878 libcap-debuginfo-2.48-9.el9_2.1.i686.rpm SHA-256: 762733bf6379e60156d6e117ec69520f26e8a31be0eec9cb7930059d6b6bdac5 libcap-debuginfo-2.48-9.el9_2.1.i686.rpm SHA-256: 762733bf6379e60156d6e117ec69520f26e8a31be0eec9cb7930059d6b6bdac5 libcap-debuginfo-2.48-9.el9_2.1.x86_64.rpm SHA-256: a998794a2f0e857271405f90d237ab483d4d87744782d5bd09e2c1f87aebf292 libcap-debuginfo-2.48-9.el9_2.1.x86_64.rpm SHA-256: a998794a2f0e857271405f90d237ab483d4d87744782d5bd09e2c1f87aebf292 libcap-debugsource-2.48-9.el9_2.1.i686.rpm SHA-256: 2d4f6f2d63305dee4a7efdb39a72f8022bb5c3fe7e6daa5ee5951bcc17e46d77 libcap-debugsource-2.48-9.el9_2.1.i686.rpm SHA-256: 2d4f6f2d63305dee4a7efdb39a72f8022bb5c3fe7e6daa5ee5951bcc17e46d77 libcap-debugsource-2.48-9.el9_2.1.x86_64.rpm SHA-256: d03bfd540b37f3eb4a174ae6299ea537c14393aa553b8ef6ca71bd4b182b1e6d libcap-debugsource-2.48-9.el9_2.1.x86_64.rpm SHA-256: d03bfd540b37f3eb4a174ae6299ea537c14393aa553b8ef6ca71bd4b182b1e6d libcap-devel-2.48-9.el9_2.1.i686.rpm SHA-256: a76b8d44ae0813def8006e3335bb04e56040550362b02f2b1e9b8c8dbad574b5 libcap-devel-2.48-9.el9_2.1.x86_64.rpm SHA-256: 12ff96a23e949dc369762c64ef4e4e705b3221f7f1393c7fdba63193644f87b3 Red Hat Enterprise Linux for ARM 64 - Extended Life Cycle 9.2 SRPM libcap-2.48-9.el9_2.1.src.rpm SHA-256: 5b025c8337812627976017fa76bbed7e69924c85fcb3b59f6459c5b470cea5d7 aarch64 libcap-2.48-9.el9_2.1.aarch64.rpm SHA-256: 7b117f201a3103d0043981e65093cac1f556919a2b3c11d4b29829f77b655dd2 libcap-debuginfo-2.48-9.el9_2.1.aarch64.rpm SHA-256: ee67d5a744e3306385be39cc2282f082278c3e9c5574de869706b14b05b4c