CVE-2017-5206

Published: Mar 23, 2017

Modified: Aug 5, 2024

PUBLISHED

Description

Firejail before 0.9.44.4, when running on a Linux kernel before 4.8, allows context-dependent attackers to bypass a seccomp-based sandbox protection mechanism via the --allow-debuggers argument.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

[oss-security] 20170107 Re: Firejail local root exploit

mailing-list

x_refsource_MLIST

https://blog.lizzie.io/linux-containers-in-500-loc.html#fn.51

x_refsource_MISC

GLSA-201701-62

vendor-advisory

x_refsource_GENTOO

https://github.com/netblue30/firejail/commit/6b8dba29d73257311564ee7f27b9b14758cc693e

x_refsource_CONFIRM

97120

vdb-entry

x_refsource_BID

https://firejail.wordpress.com/download-2/release-notes/

x_refsource_CONFIRM

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2017-5206

Description

Affected Products

References