Red Hat Security Advisory 2011-1694-03 - The libcap packages provide a library and tools for getting and setting POSIX capabilities. It was found that capsh did not change into the new root when using the "--chroot" option. An application started via the "capsh --chroot" command could use this flaw to escape the chroot restrictions. This update also fixes the following bug: Previously, the libcap packages did not contain the capsh manual page. With this update, the capsh manual page is included.
f000b748227b220d8a2c480a669b6581d439142a0dcd5567efcbe66ddb28aab3