USN-5141-1: Firejail vulnerability
Publication date
11 November 2021
Overview
Firejail could be made to overwrite files as the administrator.
Releases
Packages
- firejail - Application sandbox
Details
Roman Fiedler discovered that a race condition existed in Firejail
when using OverlayFS to prevent writes to the underlying file system. A
local attacker could use this to gain administrative privileges. Note:
this update disables support for OverlayFS in Firejail.
Roman Fiedler discovered that a race condition existed in Firejail
when using OverlayFS to prevent writes to the underlying file system. A
local attacker could use this to gain administrative privileges. Note:
this update disables support for OverlayFS in Firejail.
Update instructions
In general, a standard system update will make all the necessary changes.
Learn more about how to get the fixes.The problem can be corrected by updating your system to the following package versions:
Ubuntu Release | Package Version | ||
---|---|---|---|
20.04 focal | firejail – 0.9.62-3ubuntu0.1 |
Reduce your security exposure
Ubuntu Pro provides ten-year security coverage to 25,000+ packages in Main and Universe repositories, and it is free for up to five machines.