[SECURITY] [DSA 4849-1] firejail security update

2021-02-0921:18:28

lists.debian.org

0.001 Low

EPSS

Percentile

29.7%

JSON

Debian Security Advisory DSA-4849-1 [email protected]
https://www.debian.org/security/ Salvatore Bonaccorso
February 09, 2021 https://www.debian.org/security/faq

Package : firejail
CVE ID : CVE-2021-26910

Roman Fiedler discovered a vulnerability in the OverlayFS code in
firejail, a sandbox program to restrict the running environment of
untrusted applications, which could result in root privilege escalation.
This update disables OverlayFS support in firejail.

For the stable distribution (buster), this problem has been fixed in
version 0.9.58.2-2+deb10u2.

We recommend that you upgrade your firejail packages.

For the detailed security status of firejail please refer to its
security tracker page at:
https://security-tracker.debian.org/tracker/firejail

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: [email protected]

OSVersionArchitecturePackageVersionFilename
Debian10mipselfirejail< 0.9.58.2-2+deb10u2firejail_0.9.58.2-2+deb10u2_mipsel.deb
Debian10allfirejail-profiles< 0.9.58.2-2+deb10u2firejail-profiles_0.9.58.2-2+deb10u2_all.deb
Debian10mips64elfirejail< 0.9.58.2-2+deb10u2firejail_0.9.58.2-2+deb10u2_mips64el.deb
Debian9arm64firejail< 0.9.44.8-2+deb9u2firejail_0.9.44.8-2+deb9u2_arm64.deb
Debian10armelfirejail< 0.9.58.2-2+deb10u2firejail_0.9.58.2-2+deb10u2_armel.deb
Debian10armelfirejail-dbgsym< 0.9.58.2-2+deb10u2firejail-dbgsym_0.9.58.2-2+deb10u2_armel.deb
Debian10allfirejail< 0.9.58.2-2+deb10u2firejail_0.9.58.2-2+deb10u2_all.deb
Debian10armhffirejail-dbgsym< 0.9.58.2-2+deb10u2firejail-dbgsym_0.9.58.2-2+deb10u2_armhf.deb
Debian9armelfirejail< 0.9.44.8-2+deb9u2firejail_0.9.44.8-2+deb9u2_armel.deb
Debian10mipsfirejail-dbgsym< 0.9.58.2-2+deb10u2firejail-dbgsym_0.9.58.2-2+deb10u2_mips.deb

OS	Version	Architecture	Package	Version	Filename
Debian	10	mipsel	firejail	< 0.9.58.2-2+deb10u2	firejail_0.9.58.2-2+deb10u2_mipsel.deb
Debian	10	all	firejail-profiles	< 0.9.58.2-2+deb10u2	firejail-profiles_0.9.58.2-2+deb10u2_all.deb
Debian	10	mips64el	firejail	< 0.9.58.2-2+deb10u2	firejail_0.9.58.2-2+deb10u2_mips64el.deb
Debian	9	arm64	firejail	< 0.9.44.8-2+deb9u2	firejail_0.9.44.8-2+deb9u2_arm64.deb
Debian	10	armel	firejail	< 0.9.58.2-2+deb10u2	firejail_0.9.58.2-2+deb10u2_armel.deb
Debian	10	armel	firejail-dbgsym	< 0.9.58.2-2+deb10u2	firejail-dbgsym_0.9.58.2-2+deb10u2_armel.deb
Debian	10	all	firejail	< 0.9.58.2-2+deb10u2	firejail_0.9.58.2-2+deb10u2_all.deb
Debian	10	armhf	firejail-dbgsym	< 0.9.58.2-2+deb10u2	firejail-dbgsym_0.9.58.2-2+deb10u2_armhf.deb
Debian	9	armel	firejail	< 0.9.44.8-2+deb9u2	firejail_0.9.44.8-2+deb9u2_armel.deb
Debian	10	mips	firejail-dbgsym	< 0.9.58.2-2+deb10u2	firejail-dbgsym_0.9.58.2-2+deb10u2_mips.deb