4 matches found
Updated firejail packages fix security vulnerabilities
Updated firejail package fixes security vulnerabilities: Firejail before 0.9.60 allows truncation resizing to length 0 of the firejail binary on the host by running exploit code inside a firejail sandbox and having the sandbox terminated. To succeed, certain conditions need to be fulfilled: The...
Fedora 31 : firejail (2020-7f6e0e6e00)
Rebase to version 0.9.62 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. C Tenable Network Securit...
Fedora 30 : firejail (2020-0fb484d7f7)
Rebase to version 0.9.62 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. C Tenable Network Securit...
CVE-2019-12589
CVE-2019-12589 affects Firejail up to version 0.9.60, where seccomp filters can be written inside the jail. The underlying issue allows a process joined to the jail after a filter was modified by an attacker to bypass intended seccomp restrictions, enabling potential elevated access or impact par...