CVE-2017-5226

Published: Mar 29, 2017

Modified: Aug 5, 2024

PUBLISHED

Description

When executing a program via the bubblewrap sandbox, the nonpriv session can escape to the parent session by using the TIOCSTI ioctl to push characters into the terminal's input buffer, allowing an attacker to escape the sandbox.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://github.com/projectatomic/bubblewrap/issues/142

97260

vdb-entry

https://bugzilla.redhat.com/show_bug.cgi?id=1411811

https://github.com/projectatomic/bubblewrap/commit/d7fc532c42f0e9bf427923bab85433282b3e5117

[oss-security] 20200710 WebKitGTK and WPE WebKit Security Advisory WSA-2020-0006

mailing-list

https://www.openwall.com/lists/oss-security/2023/03/14/2

[oss-security] 20230317 flatpak: CVE-2023-28100: TIOCLINUX can send commands outside sandbox if running on a virtual console

mailing-list

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2017-5226

Description

Affected Products

References