CVE-2021-26910

Firejail before 0.9.64.4 allows attackers to bypass intended access restrictions because there is a TOCTOU race condition between a stat operation and an OverlayFS mount operation.

CVE-2020-17367

Firejail through 0.9.62 does not honor the -- end-of-options indicator after the --output option, which may lead to command injection.

CVE-2022-31214

A Privilege Context Switching issue was discovered in join.c in Firejail 0.9.68. By crafting a bogus Firejail container that is accepted by the Firejail setuid-root program as a join target, a local attacker can enter an environment in which the Linux user namespace is still the initial user namesp...

CVE-2016-10117

Firejail does not restrict access to --tmpfs, which allows local users to gain privileges, as demonstrated by mounting over /etc.

CVE-2016-10121

Firejail uses weak permissions for /dev/shm/firejail and possibly other files, which allows local users to gain privileges.

CVE-2017-5207

Firejail before 0.9.44.4, when running a bandwidth command, allows local users to gain root privileges via the --shell argument.

CVE-2016-10119

Firejail uses 0777 permissions when mounting /tmp, which allows local users to gain privileges.

CVE-2016-10122

Firejail does not properly clean environment variables, which allows local users to gain privileges.

CVE-2016-10120

Firejail uses 0777 permissions when mounting (1) /dev, (2) /dev/shm, (3) /var/tmp, or (4) /var/lock, which allows local users to gain privileges.

CVE-2016-10123

Firejail allows --chroot when seccomp is not supported, which might allow local users to gain privileges.