Lucene search
K

21 matches found

RedhatCVE
RedhatCVE
added 2022/05/20 11:37 p.m.26 views

CVE-2020-17367

Firejail through 0.9.62 does not honor the -- end-of-options indicator after the --output option, which may lead to command injection...

7.8CVSS0.9AI score0.01464EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.12 views

Mageia: Security Advisory (MGASA-2020-0328)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.8AI score0.04098EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2021/01/11 12:0 a.m.31 views

GLSA-202101-02 : Firejail: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-202101-02 Firejail: Multiple vulnerabilities Multiple vulnerabilities have been discovered in Firejail. Please review the CVE identifiers referenced below for details. Impact : Please review the referenced CVE identifiers for...

9.8CVSS8.1AI score0.04098EPSS
Exploits0References3
ALT Linux
ALT Linux
added 2020/10/14 12:0 a.m.25 views

Security fix for the ALT Linux 9 package mediawiki version 1.35.0-alt1

1.35.0-alt1 built Oct. 14, 2020 Vitaly Lipatov in task 259569 Oct. 9, 2020 Vitaly Lipatov - new version 1.35.0 LTS with rpmrb script - CVE-2020-25813, CVE-2020-25812, CVE-2020-25815 - CVE-2020-17367, CVE-2020-17368, CVE-2020-25814 - CVE-2020-25828, CVE-2020-25869, CVE-2020-25827...

7.5CVSS6.6AI score0.04098EPSS
Exploits1
OpenVAS
OpenVAS
added 2020/09/30 12:0 a.m.20 views

MediaWiki Multiple Vulnerabilities (Sep 2020) - Linux

MediaWiki is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mediawiki:mediawiki"; ifdescripti...

9.8CVSS7AI score0.04098EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2020/09/30 12:0 a.m.22 views

MediaWiki Multiple Vulnerabilities (Sep 2020) - Windows

MediaWiki is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mediawiki:mediawiki"; ifdescripti...

9.8CVSS7AI score0.04098EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2020/09/27 12:0 a.m.18 views

Debian: Security Advisory (DSA-4767-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS6AI score0.04098EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2020/08/27 12:0 a.m.40 views

Fedora 31 : firejail (2020-80a6d7e7e0)

Rebase to version 0.9.62.4 ---- Rebase to version 0.9.62.2 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional...

9.8CVSS8AI score0.04098EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2020/08/27 12:0 a.m.30 views

Fedora 32 : firejail (2020-45fc8559d5)

Rebase to version 0.9.62.4 ---- Rebase to version 0.9.62.2 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional...

9.8CVSS8AI score0.04098EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2020/08/24 12:0 a.m.26 views

Debian DLA-2336-1 : firejail security update

Tim Starling discovered two vulnerabilities in firejail, a sandbox program to restrict the running environment of untrusted applications. CVE-2020-17367 It was reported that firejail does not respect the end-of-options separator '--', allowing an attacker with control over the command line option...

9.8CVSS8.3AI score0.04098EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2020/08/23 12:0 a.m.17 views

Debian: Security Advisory (DLA-2336-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.6AI score0.04098EPSS
Exploits0References4
Debian
Debian
added 2020/08/22 2:37 p.m.31 views

[SECURITY] [DLA 2336-1] firejail security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-2336-1 [email protected] https://www.debian.org/lts/security/ Thorsten Alteholz August 22, 2020 https://wiki.debian.org/LTS -...

9.8CVSS9.6AI score0.04098EPSS
Exploits0
ALT Linux
ALT Linux
added 2020/08/19 12:0 a.m.43 views

Security fix for the ALT Linux 10 package firejail version 0.9.62.4-alt1

Aug. 19, 2020 Aleksei Nikiforov 0.9.62.4-alt1 - Updated to upstream version 0.9.62.4 Fixes: CVE-2020-17367, CVE-2020-17368...

7.5CVSS8.7AI score0.04098EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2020/08/18 12:0 a.m.31 views

openSUSE Security Update : firejail (openSUSE-2020-1208)

This update for firejail fixes the following issues : - CVE-2020-17367: The end-of-options separator -- was not handled correctly boo1174986. - CVE-2020-17368: An attacker who has control over the command line arguments could run arbitrary commands boo1174986. C Tenable Network Security, Inc. The...

9.8CVSS8.2AI score0.04098EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2020/08/15 12:0 a.m.16 views

openSUSE: Security Advisory for firejail (openSUSE-SU-2020:1208-1)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.8CVSS8.8AI score0.04098EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2020/08/11 4:15 p.m.22 views

CVE-2020-17367

Firejail through 0.9.62 does not honor the -- end-of-options indicator after the --output option, which may lead to command injection...

7.8CVSS7.1AI score0.01464EPSS
Exploits0References1
CVE
CVE
added 2020/08/11 3:58 p.m.171 views

CVE-2020-17367

Firejail vulnerable to command injection via CLI handling: CVE-2020-17367 occurs because the end-of-options indicator is not honored after --output, allowing manipulation of a sandboxed app’s command line; CVE-2020-17368 also exists, where output redirection via --output/--output-stderr concatena...

7.8CVSS8.7AI score0.01464EPSS
Exploits0References8Affected Software1
Tenable Nessus
Tenable Nessus
added 2020/08/07 12:0 a.m.34 views

Debian DSA-4742-1 : firejail - security update

Tim Starling discovered two vulnerabilities in firejail, a sandbox program to restrict the running environment of untrusted applications. - CVE-2020-17367 It was reported that firejail does not respect the end-of-options separator '--', allowing an attacker with control over the command line...

9.8CVSS8AI score0.04098EPSS
Exploits0References7
OpenVAS
OpenVAS
added 2020/08/07 12:0 a.m.20 views

Debian: Security Advisory (DSA-4742-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.6AI score0.04098EPSS
Exploits0References4
Debian
Debian
added 2020/08/06 8:16 p.m.31 views

[SECURITY] [DSA 4742-1] firejail security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4742-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso August 06, 2020 https://www.debian.org/security/faq -...

7.5CVSS1.3AI score0.04098EPSS
Exploits0
Rows per page
Query Builder