CVE-2019-12589

Опубликовано: 03 июн. 2019

Источник: nvd

CVSS3: 8.8

CVSS2: 4.6

EPSS Низкий

Описание

In Firejail before 0.9.60, seccomp filters are writable inside the jail, leading to a lack of intended seccomp restrictions for a process that is joined to the jail after a filter has been modified by an attacker.

Ссылки

https://github.com/netblue30/firejail/commit/eecf35c2f8249489a1d3e512bb07f0d427183134
Patch
Third Party Advisory
https://github.com/netblue30/firejail/issues/2718
Exploit
Patch
Third Party Advisory
https://github.com/netblue30/firejail/releases/tag/0.9.60
Release Notes
Third Party Advisory
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CDY7B73YDRBURA25APSHD5PFEO4TNSFW/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RGVULJ6IKVDO6UAVIQRHQVSKOUD6QDWM/
https://github.com/netblue30/firejail/commit/eecf35c2f8249489a1d3e512bb07f0d427183134
Patch
Third Party Advisory
https://github.com/netblue30/firejail/issues/2718
Exploit
Patch
Third Party Advisory
https://github.com/netblue30/firejail/releases/tag/0.9.60
Release Notes
Third Party Advisory
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CDY7B73YDRBURA25APSHD5PFEO4TNSFW/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RGVULJ6IKVDO6UAVIQRHQVSKOUD6QDWM/

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:firejail_project:firejail:*:*:*:*:-:*:*:*

Версия до 0.9.60 (исключая)

EPSS

Процентиль: 24%

0.00079

Низкий

8.8 High

CVSS3

4.6 Medium

CVSS2

Дефекты

CWE-732

Связанные уязвимости

CVE-2019-12589

CVSS3: 8.8

ubuntu

больше 6 лет назад

CVE-2019-12589

CVSS3: 8.8

debian

больше 6 лет назад

In Firejail before 0.9.60, seccomp filters are writable inside the jai ...

GHSA-q9v9-56wp-f76g

github

больше 3 лет назад

EPSS

Процентиль: 24%

0.00079

Низкий

8.8 High

CVSS3

4.6 Medium

CVSS2

Дефекты

CWE-732