[Bug 1916767] Re: firejail version in Ubuntu 20.04 LTS is vulnerable to CVE-2021-26910

Launchpad Bug Tracker Wed, 10 Nov 2021 23:31:04 -0800

This bug was fixed in the package firejail - 0.9.62-3ubuntu0.1

---------------
firejail (0.9.62-3ubuntu0.1) focal-security; urgency=low


  * SECURITY UPDATE: bypass of access restrictions (LP: #1916767)
    - disable OverlayFS support which contains a TOCTOU race condition
      between a stat operation and an OverlayFS mount.
    - CVE-2021-26910

 -- Reiner Herrmann <[email protected]>  Sat, 27 Mar 2021 15:20:50
+0000

** Changed in: firejail (Ubuntu)
       Status: In Progress => Fix Released

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1916767

Title:
  firejail version in Ubuntu 20.04 LTS is vulnerable to CVE-2021-26910

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/firejail/+bug/1916767/+subscriptions


-- 
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

[Bug 1916767] Re: firejail version in Ubuntu 20.04 LTS is vulnerable to CVE-2021-26910

Reply via email to