SB2017020922 - Multiple vulnerabilities in firejail.wordpress.com firejail
Published: February 9, 2017 Updated: August 8, 2020
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 2 secuirty vulnerabilities.
1) Improper Privilege Management (CVE-ID: CVE-2017-5207)
The vulnerability allows a local authenticated user to execute arbitrary code.
Firejail before 0.9.44.4, when running a bandwidth command, allows local users to gain root privileges via the --shell argument.
2) Missing Authorization (CVE-ID: CVE-2017-5180)
The vulnerability allows a local authenticated user to execute arbitrary code.
Firejail before 0.9.44.4 and 0.9.38.x LTS before 0.9.38.8 LTS does not consider the .Xauthority case during its attempt to prevent accessing user files with an euid of zero, which allows local users to conduct sandbox-escape attacks via vectors involving a symlink and the --private option.
Remediation
Install update from vendor's website.
References
- http://www.openwall.com/lists/oss-security/2017/01/07/6
- http://www.securityfocus.com/bid/97385
- https://firejail.wordpress.com/download-2/release-notes/
- https://github.com/netblue30/firejail/commit/5d43fdcd215203868d440ffc42036f5f5ffc89fc
- https://github.com/netblue30/firejail/issues/1023
- https://security.gentoo.org/glsa/201701-62
- http://openwall.com/lists/oss-security/2017/01/04/2
- http://www.securityfocus.com/bid/95298