Information on source package firejail

Available versions

ReleaseVersion
stretch0.9.44.8-2
stretch (security)0.9.44.8-2+deb9u1
buster0.9.58.2-2+deb10u1
bullseye0.9.64-1
sid0.9.64-1

Resolved issues

BugDescription
CVE-2020-17368Firejail through 0.9.62 mishandles shell metacharacters during use of ...
CVE-2020-17367Firejail through 0.9.62 does not honor the -- end-of-options indicator ...
CVE-2019-12589In Firejail before 0.9.60, seccomp filters are writable inside the jai ...
CVE-2019-12499Firejail before 0.9.60 allows truncation (resizing to length 0) of the ...
CVE-2017-5940Firejail before 0.9.44.6 and 0.9.38.x LTS before 0.9.38.10 LTS does no ...
CVE-2017-5207Firejail before 0.9.44.4, when running a bandwidth command, allows loc ...
CVE-2017-5206Firejail before 0.9.44.4, when running on a Linux kernel before 4.8, a ...
CVE-2017-5180Firejail before 0.9.44.4 and 0.9.38.x LTS before 0.9.38.8 LTS does not ...
CVE-2016-9016Firejail 0.9.38.4 allows local users to execute arbitrary commands out ...
CVE-2016-10123Firejail allows --chroot when seccomp is not supported, which might al ...
CVE-2016-10122Firejail does not properly clean environment variables, which allows l ...
CVE-2016-10121Firejail uses weak permissions for /dev/shm/firejail and possibly othe ...
CVE-2016-10120Firejail uses 0777 permissions when mounting (1) /dev, (2) /dev/shm, ( ...
CVE-2016-10119Firejail uses 0777 permissions when mounting /tmp, which allows local ...
CVE-2016-10118Firejail allows local users to truncate /etc/resolv.conf via a chroot ...
CVE-2016-10117Firejail does not restrict access to --tmpfs, which allows local users ...

Security announcements

DSA / DLADescription
DLA-2336-1firejail - security update
DSA-4742-1firejail - security update

Search for package or bug name: Reporting problems