PT-2017-16367 · Firejail+1 · Firejail+1

Sebastian Krahmer

Published

2017-01-08

Updated

2024-06-15

CVE-2017-5180

CVSS v3.1

8.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Firejail versions prior to 0.9.44.4 Firejail versions 0.9.38.x prior to 0.9.38.8 LTS

Description The issue allows local users to conduct sandbox-escape attacks via vectors involving a symlink and the --private option, due to the software not considering the .Xauthority case during its attempt to prevent accessing user files with an euid of zero.

Recommendations For Firejail versions prior to 0.9.44.4, update to version 0.9.44.4 or later. For Firejail versions 0.9.38.x prior to 0.9.38.8 LTS, update to version 0.9.38.8 LTS or later.

Exploit

Fix

Missing Authorization

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-862

Related Identifiers

ALT-PU-2017-1009

CVE-2017-5180

OPENSUSE-SU-2024:10759-1

Affected Products

Alt Linux

Firejail

PT-2017-16367 · Firejail+1 · Firejail+1

CVE-2017-5180

Weakness Enumeration

Related Identifiers

Affected Products

References · 28