CVE-2020-5291HIGHCVSS 7.8fixed in 0.4.12020-03-31
CVE-2020-5291 [HIGH] CWE-648 CVE-2020-5291: Bubblewrap (bwrap) before version 0.4.1, if installed in setuid mode and the kernel supports unprivi
Bubblewrap (bwrap) before version 0.4.1, if installed in setuid mode and the kernel supports unprivileged user namespaces, then the `bwrap --userns2` option can be used to make the setuid process keep running as root while being traceable. This can in turn be used to gain root permissions. Note that this only affects the combination of bubblewrap in set
cvelistv5nvd