PT-2017-16773 · Firejail+1 · Firejail+1

Sebastian Krahmer

Publicado

2017-01-31

Atualizado

2019-10-03

CVE-2017-5940

CVSS v3.1

8.8

Alta

Vetor

AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Firejail versions prior to 0.9.44.6 Firejail 0.9.38.x LTS versions prior to 0.9.38.10 LTS

Description The issue allows local users to conduct sandbox-escape attacks via vectors involving a symlink and the --private option, due to an incomplete fix for a previous issue. This is possible because Firejail does not comprehensively address dotfile cases during its attempt to prevent accessing user files with an euid of zero.

Recommendations For Firejail versions prior to 0.9.44.6, update to version 0.9.44.6 or later. For Firejail 0.9.38.x LTS versions prior to 0.9.38.10 LTS, update to version 0.9.38.10 LTS or later.

Correção

Improper Privilege Management

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-269

Identificadores relacionados

ALT-PU-2017-1107

CVE-2017-5940

Produtos afetados

Alt Linux

Firejail

PT-2017-16773 · Firejail+1 · Firejail+1

CVE-2017-5940

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 14