6 matches found
GLSA-202305-19 : Firejail: Local Privilege Escalation
The remote host is affected by the vulnerability described in GLSA-202305-19 Firejail: Local Privilege Escalation - A Privilege Context Switching issue was discovered in join.c in Firejail 0.9.68. By crafting a bogus Firejail container that is accepted by the Firejail setuid-root program as a joi...
openSUSE 15 Security Update : firejail (openSUSE-SU-2022:10015-1)
The remote SUSE Linux SUSE15 host has a package installed that is affected by a vulnerability as referenced in the openSUSE-SU-2022:10015-1 advisory. - A Privilege Context Switching issue was discovered in join.c in Firejail 0.9.68. By crafting a bogus Firejail container that is accepted by the...
CVE-2022-31214
A Privilege Context Switching issue was discovered in join.c in Firejail 0.9.68. By crafting a bogus Firejail container that is accepted by the Firejail setuid-root program as a join target, a local attacker can enter an environment in which the Linux user namespace is still the initial user...
CVE-2022-31214
A Privilege Context Switching issue was discovered in join.c in Firejail 0.9.68. By crafting a bogus Firejail container that is accepted by the Firejail setuid-root program as a join target, a local attacker can enter an environment in which the Linux user namespace is still the initial user...
CVE-2022-31214
Firejail (version 0.9.68 affected) has a Privilege Context Switching flaw in join.c that lets a local user exploit a crafted join target to drop out of the initial user namespace and gain root privileges via setuid-root binaries. mitigations rely on upgrading to patched releases (e.g., Firejail 0...
CVE-2022-31214
A Privilege Context Switching issue was discovered in join.c in Firejail 0.9.68. By crafting a bogus Firejail container that is accepted by the Firejail setuid-root program as a join target, a local attacker can enter an environment in which the Linux user namespace is still the initial user...