Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2017-5940

Опубликовано: 09 фев. 2017
Источник: debian

Описание

Firejail before 0.9.44.6 and 0.9.38.x LTS before 0.9.38.10 LTS does not comprehensively address dotfile cases during its attempt to prevent accessing user files with an euid of zero, which allows local users to conduct sandbox-escape attacks via vectors involving a symlink and the --private option. NOTE: this vulnerability exists because of an incomplete fix for CVE-2017-5180.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
firejailfixed0.9.44.6-1package

Примечания

  • Changelog mentions the new fix for CVE-2017-5180 in RELNOTES for 0.9.44.6

  • an needs series of commits after 0.9.44.4

  • https://github.com/netblue30/firejail/blob/0.9.44.6/RELNOTES

  • https://github.com/netblue30/firejail/commit/38d418505e9ee2d326557e5639e8da49c298858f (0.9.44.6)

  • https://github.com/netblue30/firejail/commit/b8a4ff9775318ca5e679183884a6a63f3da8f863 (0.9.44.6)

  • https://www.openwall.com/lists/oss-security/2017/01/29/4

Связанные уязвимости

ubuntu логотип

CVE-2017-5940

CVSS3: 8.8
ubuntu
почти 9 лет назад

Firejail before 0.9.44.6 and 0.9.38.x LTS before 0.9.38.10 LTS does not comprehensively address dotfile cases during its attempt to prevent accessing user files with an euid of zero, which allows local users to conduct sandbox-escape attacks via vectors involving a symlink and the --private option. NOTE: this vulnerability exists because of an incomplete fix for CVE-2017-5180.

nvd логотип

CVE-2017-5940

CVSS3: 8.8
nvd
почти 9 лет назад

Firejail before 0.9.44.6 and 0.9.38.x LTS before 0.9.38.10 LTS does not comprehensively address dotfile cases during its attempt to prevent accessing user files with an euid of zero, which allows local users to conduct sandbox-escape attacks via vectors involving a symlink and the --private option. NOTE: this vulnerability exists because of an incomplete fix for CVE-2017-5180.

github логотип

GHSA-2mx9-jpq3-jxj6

CVSS3: 8.8
github
больше 3 лет назад

Firejail before 0.9.44.6 and 0.9.38.x LTS before 0.9.38.10 LTS does not comprehensively address dotfile cases during its attempt to prevent accessing user files with an euid of zero, which allows local users to conduct sandbox-escape attacks via vectors involving a symlink and the --private option. NOTE: this vulnerability exists because of an incomplete fix for CVE-2017-5180.