Lucene search
Veracode Vulnerability DatabaseVERACODE:28172HistoryDec 06, 2020 - 3:20 a.m.
Command Injection
2020-12-0603:20:25
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
6
0.013 Low
EPSS
Percentile
85.9%
Firejail is vulnerable to command injection. The vulnerability existed because of mishandled shell metacharacters during use of the --output or --output-stderr option.
| CPE | Name | Operator | Version |
|---|---|---|---|
| mediawiki:buster | eq | 1:1.31.7-1~deb10u1 | |
| mediawiki:buster | eq | 1:1.31.7-1~deb10u1 |
References
lists.opensuse.org/opensuse-security-announce/2020-08/msg00036.html
github.com/netblue30/firejail/
lists.debian.org/debian-lts-announce/2020/08/msg00033.html
lists.fedoraproject.org/archives/list/[email protected]/message/JFXN3JJG4DIMN4TAHOTKFMS7SGM4EOTR/
lists.fedoraproject.org/archives/list/[email protected]/message/W66IR5YT4KG464SKEMQN2NP2LGATGEGS/
security-tracker.debian.org/tracker/CVE-2020-17368
security.gentoo.org/glsa/202101-02
www.debian.org/security/2020/dsa-4742
www.debian.org/security/2020/dsa-4743
Related
nvd
nvd
CVE-2020-17368
2020-08-11 16:15:12
cvelist
cvelist
CVE-2020-17368
2020-08-11 15:59:48
cve
cve
CVE-2020-17368
2020-08-11 16:15:12
ubuntucve
ubuntucve
CVE-2020-17368
2020-08-11 00:00:00
debiancve
debiancve
CVE-2020-17368
2020-08-11 16:15:12
prion
prion
Command injection
2020-08-11 16:15:00
osv
osv
CVE-2020-17368
2020-08-11 16:15:12
firejail - security update
2020-08-06 00:00:00
firejail - security update
2020-08-22 00:00:00
nessus
nessus
Fedora 32 : firejail (2020-45fc8559d5)
2020-08-27 00:00:00
Debian DLA-2336-1 : firejail security update
2020-08-24 00:00:00
Fedora 31 : firejail (2020-80a6d7e7e0)
2020-08-27 00:00:00
fedora
fedora
[SECURITY] Fedora 32 Update: firejail-0.9.62.4-1.fc32
2020-08-26 14:52:58
[SECURITY] Fedora 31 Update: firejail-0.9.62.4-1.fc31
2020-08-26 14:41:27
altlinux
altlinux
Security fix for the ALT Linux 10 package firejail version 0.9.62.4-alt1
2020-08-19 00:00:00
Security fix for the ALT Linux 9 package mediawiki version 1.35.0-alt1
2020-10-14 00:00:00
openvas
openvas
openSUSE: Security Advisory for firejail (openSUSE-SU-2020:1208-1)
2020-08-15 00:00:00
Fedora: Security Advisory for firejail (FEDORA-2020-45fc8559d5)
2020-09-02 00:00:00
Debian: Security Advisory (DSA-4742-1)
2020-08-07 00:00:00
debian
debian
[SECURITY] [DSA 4742-1] firejail security update
2020-08-06 20:16:40
[SECURITY] [DSA 4742-1] firejail security update
2020-08-06 20:16:40
[SECURITY] [DLA 2336-1] firejail security update
2020-08-22 14:37:52
suse
suse
Security update for firejail (moderate)
2020-08-14 00:00:00
Security update for firejail (important)
2021-02-10 00:00:00
gentoo
gentoo
Firejail: Multiple vulnerabilities
2021-01-10 00:00:00
mageia
mageia
Updated firejail packages fix security vulnerability
2020-08-18 20:41:27