CVE-2017-5206 — Project Firejail vulnerability

5 documents5 sources

Severity

9.0CRITICALNVD

EPSS

2.4%

top 14.88%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Firejail Project Firejail

Timeline

PublishedMar 23

Latest updateMay 13

Description

Firejail before 0.9.44.4, when running on a Linux kernel before 4.8, allows context-dependent attackers to bypass a seccomp-based sandbox protection mechanism via the --allow-debuggers argument.

CVSS vector

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:HExploitability: 2.2 | Impact: 6.0

Affected Packages2 packages

▶NVDfirejail_project/firejail< 0.9.44.4

▶Debianfirejail_project/firejail< 0.9.44.4-1+3

Patches

Patch: www.openwall.com ↗Patch: github.com ↗Patch: security.gentoo.org ↗

🔴Vulnerability Details

GHSA

GHSA-cj78-6w9j-286h: Firejail before 0↗2022-05-13

▶

OSV

CVE-2017-5206: Firejail before 0↗2017-03-23

▶

CVEList

CVE-2017-5206: Firejail before 0↗2017-03-23

▶

📋Vendor Advisories

Debian

CVE-2017-5206: firejail - Firejail before 0.9.44.4, when running on a Linux kernel before 4.8, allows cont...↗2017

▶