Hi Steve, thanks for taking care of this issue! The patch disables overlayfs support completely (at build time), which is (was) one of many confinement features of firejail. But this is not really a problem, as the feature was already otherwise broken with newer kernel versions (~4.19): https://github.com/netblue30/firejail/issues/2799 https://bugs.debian.org/971578 All other confinement features stay effective.
** Bug watch added: github.com/netblue30/firejail/issues #2799 https://github.com/netblue30/firejail/issues/2799 ** Bug watch added: Debian Bug tracker #971578 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=971578 -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1916767 Title: firejail version in Ubuntu 20.04 LTS is vulnerable to CVE-2021-26910 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/firejail/+bug/1916767/+subscriptions -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
