firejail is vulnerable to arbitrary code execution. The library does not properly handle the shutdown option in src/firejail/shutdown.c
, allowing truncation of the firejail binary on the host by running exploit code inside a firejail which may lead to termination of the sandbox.
CPE | Name | Operator | Version |
---|---|---|---|
firejail:buster | eq | 0.9.58.2-2+deb10u1 | |
firejail:buster | eq | 0.9.58.2-2+deb10u1 |