7 matches found
CVE-2016-10117
Firejail does not restrict access to --tmpfs, which allows local users to gain privileges, as demonstrated by mounting over /etc.
CVE-2016-10118
Firejail allows local users to truncate /etc/resolv.conf via a chroot command to /.
CVE-2016-10121
Firejail uses weak permissions for /dev/shm/firejail and possibly other files, which allows local users to gain privileges.
CVE-2016-10119
Firejail uses 0777 permissions when mounting /tmp, which allows local users to gain privileges.
CVE-2016-10122
Firejail does not properly clean environment variables, which allows local users to gain privileges.
CVE-2016-10120
Firejail uses 0777 permissions when mounting (1) /dev, (2) /dev/shm, (3) /var/tmp, or (4) /var/lock, which allows local users to gain privileges.
CVE-2016-10123
Firejail allows --chroot when seccomp is not supported, which might allow local users to gain privileges.