1. CVE-Search
  2. CVE-2017-5206
ID CVE-2017-5206
Summary Firejail before 0.9.44.4, when running on a Linux kernel before 4.8, allows context-dependent attackers to bypass a seccomp-based sandbox protection mechanism via the --allow-debuggers argument.
References
Vulnerable Configurations
  • cpe:2.3:a:firejail_project:firejail:-:*:*:*:*:*:*:*
    cpe:2.3:a:firejail_project:firejail:-:*:*:*:*:*:*:*
  • cpe:2.3:a:firejail_project:firejail:-:*:*:*:*:wordpress:*:*
    cpe:2.3:a:firejail_project:firejail:-:*:*:*:*:wordpress:*:*
  • cpe:2.3:a:firejail_project:firejail:0.9:*:*:*:*:*:*:*
    cpe:2.3:a:firejail_project:firejail:0.9:*:*:*:*:*:*:*
  • cpe:2.3:a:firejail_project:firejail:0.9:*:*:*:-:*:*:*
    cpe:2.3:a:firejail_project:firejail:0.9:*:*:*:-:*:*:*
  • cpe:2.3:a:firejail_project:firejail:0.9.2:*:*:*:*:*:*:*
    cpe:2.3:a:firejail_project:firejail:0.9.2:*:*:*:*:*:*:*
  • cpe:2.3:a:firejail_project:firejail:0.9.2:*:*:*:-:*:*:*
    cpe:2.3:a:firejail_project:firejail:0.9.2:*:*:*:-:*:*:*
  • cpe:2.3:a:firejail_project:firejail:0.9.4:*:*:*:*:*:*:*
    cpe:2.3:a:firejail_project:firejail:0.9.4:*:*:*:*:*:*:*
  • cpe:2.3:a:firejail_project:firejail:0.9.4:*:*:*:-:*:*:*
    cpe:2.3:a:firejail_project:firejail:0.9.4:*:*:*:-:*:*:*
  • cpe:2.3:a:firejail_project:firejail:0.9.6:*:*:*:*:*:*:*
    cpe:2.3:a:firejail_project:firejail:0.9.6:*:*:*:*:*:*:*
  • cpe:2.3:a:firejail_project:firejail:0.9.6:*:*:*:-:*:*:*
    cpe:2.3:a:firejail_project:firejail:0.9.6:*:*:*:-:*:*:*
  • cpe:2.3:a:firejail_project:firejail:0.9.8:*:*:*:*:*:*:*
    cpe:2.3:a:firejail_project:firejail:0.9.8:*:*:*:*:*:*:*
  • cpe:2.3:a:firejail_project:firejail:0.9.8:*:*:*:-:*:*:*
    cpe:2.3:a:firejail_project:firejail:0.9.8:*:*:*:-:*:*:*
  • cpe:2.3:a:firejail_project:firejail:0.9.8.1:*:*:*:*:*:*:*
    cpe:2.3:a:firejail_project:firejail:0.9.8.1:*:*:*:*:*:*:*
  • cpe:2.3:a:firejail_project:firejail:0.9.8.1:*:*:*:-:*:*:*
    cpe:2.3:a:firejail_project:firejail:0.9.8.1:*:*:*:-:*:*:*
  • cpe:2.3:a:firejail_project:firejail:0.9.10:*:*:*:*:*:*:*
    cpe:2.3:a:firejail_project:firejail:0.9.10:*:*:*:*:*:*:*
  • cpe:2.3:a:firejail_project:firejail:0.9.10:*:*:*:-:*:*:*
    cpe:2.3:a:firejail_project:firejail:0.9.10:*:*:*:-:*:*:*
  • cpe:2.3:a:firejail_project:firejail:0.9.12:*:*:*:*:*:*:*
    cpe:2.3:a:firejail_project:firejail:0.9.12:*:*:*:*:*:*:*
  • cpe:2.3:a:firejail_project:firejail:0.9.12:*:*:*:-:*:*:*
    cpe:2.3:a:firejail_project:firejail:0.9.12:*:*:*:-:*:*:*
  • cpe:2.3:a:firejail_project:firejail:0.9.12.1:*:*:*:*:*:*:*
    cpe:2.3:a:firejail_project:firejail:0.9.12.1:*:*:*:*:*:*:*
  • cpe:2.3:a:firejail_project:firejail:0.9.12.1:*:*:*:-:*:*:*
    cpe:2.3:a:firejail_project:firejail:0.9.12.1:*:*:*:-:*:*:*
  • cpe:2.3:a:firejail_project:firejail:0.9.12.2:*:*:*:*:*:*:*
    cpe:2.3:a:firejail_project:firejail:0.9.12.2:*:*:*:*:*:*:*
  • cpe:2.3:a:firejail_project:firejail:0.9.12.2:*:*:*:-:*:*:*
    cpe:2.3:a:firejail_project:firejail:0.9.12.2:*:*:*:-:*:*:*
  • cpe:2.3:a:firejail_project:firejail:0.9.14:*:*:*:*:*:*:*
    cpe:2.3:a:firejail_project:firejail:0.9.14:*:*:*:*:*:*:*
  • cpe:2.3:a:firejail_project:firejail:0.9.14:*:*:*:-:*:*:*
    cpe:2.3:a:firejail_project:firejail:0.9.14:*:*:*:-:*:*:*
  • cpe:2.3:a:firejail_project:firejail:0.9.16:*:*:*:*:*:*:*
    cpe:2.3:a:firejail_project:firejail:0.9.16:*:*:*:*:*:*:*
  • cpe:2.3:a:firejail_project:firejail:0.9.16:*:*:*:-:*:*:*
    cpe:2.3:a:firejail_project:firejail:0.9.16:*:*:*:-:*:*:*
  • cpe:2.3:a:firejail_project:firejail:0.9.20:*:*:*:*:*:*:*
    cpe:2.3:a:firejail_project:firejail:0.9.20:*:*:*:*:*:*:*
  • cpe:2.3:a:firejail_project:firejail:0.9.20:*:*:*:-:*:*:*
    cpe:2.3:a:firejail_project:firejail:0.9.20:*:*:*:-:*:*:*
  • cpe:2.3:a:firejail_project:firejail:0.9.22:*:*:*:*:*:*:*
    cpe:2.3:a:firejail_project:firejail:0.9.22:*:*:*:*:*:*:*
  • cpe:2.3:a:firejail_project:firejail:0.9.22:*:*:*:-:*:*:*
    cpe:2.3:a:firejail_project:firejail:0.9.22:*:*:*:-:*:*:*
  • cpe:2.3:a:firejail_project:firejail:0.9.24:*:*:*:*:*:*:*
    cpe:2.3:a:firejail_project:firejail:0.9.24:*:*:*:*:*:*:*
  • cpe:2.3:a:firejail_project:firejail:0.9.24:*:*:*:-:*:*:*
    cpe:2.3:a:firejail_project:firejail:0.9.24:*:*:*:-:*:*:*
  • cpe:2.3:a:firejail_project:firejail:0.9.26:*:*:*:*:*:*:*
    cpe:2.3:a:firejail_project:firejail:0.9.26:*:*:*:*:*:*:*
  • cpe:2.3:a:firejail_project:firejail:0.9.26:*:*:*:-:*:*:*
    cpe:2.3:a:firejail_project:firejail:0.9.26:*:*:*:-:*:*:*
  • cpe:2.3:a:firejail_project:firejail:0.9.28:*:*:*:*:*:*:*
    cpe:2.3:a:firejail_project:firejail:0.9.28:*:*:*:*:*:*:*
  • cpe:2.3:a:firejail_project:firejail:0.9.28:*:*:*:-:*:*:*
    cpe:2.3:a:firejail_project:firejail:0.9.28:*:*:*:-:*:*:*
  • cpe:2.3:a:firejail_project:firejail:0.9.30:*:*:*:*:*:*:*
    cpe:2.3:a:firejail_project:firejail:0.9.30:*:*:*:*:*:*:*
  • cpe:2.3:a:firejail_project:firejail:0.9.30:*:*:*:-:*:*:*
    cpe:2.3:a:firejail_project:firejail:0.9.30:*:*:*:-:*:*:*
  • cpe:2.3:a:firejail_project:firejail:0.9.30:-:*:*:*:*:*:*
    cpe:2.3:a:firejail_project:firejail:0.9.30:-:*:*:*:*:*:*
  • cpe:2.3:a:firejail_project:firejail:0.9.30:-:*:*:-:*:*:*
    cpe:2.3:a:firejail_project:firejail:0.9.30:-:*:*:-:*:*:*
  • cpe:2.3:a:firejail_project:firejail:0.9.30:rc1:*:*:*:*:*:*
    cpe:2.3:a:firejail_project:firejail:0.9.30:rc1:*:*:*:*:*:*
  • cpe:2.3:a:firejail_project:firejail:0.9.32:*:*:*:*:*:*:*
    cpe:2.3:a:firejail_project:firejail:0.9.32:*:*:*:*:*:*:*
  • cpe:2.3:a:firejail_project:firejail:0.9.32:*:*:*:-:*:*:*
    cpe:2.3:a:firejail_project:firejail:0.9.32:*:*:*:-:*:*:*
  • cpe:2.3:a:firejail_project:firejail:0.9.32:-:*:*:*:*:*:*
    cpe:2.3:a:firejail_project:firejail:0.9.32:-:*:*:*:*:*:*
  • cpe:2.3:a:firejail_project:firejail:0.9.32:-:*:*:-:*:*:*
    cpe:2.3:a:firejail_project:firejail:0.9.32:-:*:*:-:*:*:*
  • cpe:2.3:a:firejail_project:firejail:0.9.32:rc1:*:*:*:*:*:*
    cpe:2.3:a:firejail_project:firejail:0.9.32:rc1:*:*:*:*:*:*
  • cpe:2.3:a:firejail_project:firejail:0.9.34:*:*:*:*:*:*:*
    cpe:2.3:a:firejail_project:firejail:0.9.34:*:*:*:*:*:*:*
  • cpe:2.3:a:firejail_project:firejail:0.9.34:*:*:*:-:*:*:*
    cpe:2.3:a:firejail_project:firejail:0.9.34:*:*:*:-:*:*:*
  • cpe:2.3:a:firejail_project:firejail:0.9.34:-:*:*:*:*:*:*
    cpe:2.3:a:firejail_project:firejail:0.9.34:-:*:*:*:*:*:*
  • cpe:2.3:a:firejail_project:firejail:0.9.34:-:*:*:-:*:*:*
    cpe:2.3:a:firejail_project:firejail:0.9.34:-:*:*:-:*:*:*
  • cpe:2.3:a:firejail_project:firejail:0.9.34:rc1:*:*:*:*:*:*
    cpe:2.3:a:firejail_project:firejail:0.9.34:rc1:*:*:*:*:*:*
  • cpe:2.3:a:firejail_project:firejail:0.9.36:*:*:*:*:*:*:*
    cpe:2.3:a:firejail_project:firejail:0.9.36:*:*:*:*:*:*:*
  • cpe:2.3:a:firejail_project:firejail:0.9.36:*:*:*:-:*:*:*
    cpe:2.3:a:firejail_project:firejail:0.9.36:*:*:*:-:*:*:*
  • cpe:2.3:a:firejail_project:firejail:0.9.36:-:*:*:*:*:*:*
    cpe:2.3:a:firejail_project:firejail:0.9.36:-:*:*:*:*:*:*
  • cpe:2.3:a:firejail_project:firejail:0.9.36:-:*:*:-:*:*:*
    cpe:2.3:a:firejail_project:firejail:0.9.36:-:*:*:-:*:*:*
  • cpe:2.3:a:firejail_project:firejail:0.9.36:rc1:*:*:*:*:*:*
    cpe:2.3:a:firejail_project:firejail:0.9.36:rc1:*:*:*:*:*:*
  • cpe:2.3:a:firejail_project:firejail:0.9.38:*:*:*:*:*:*:*
    cpe:2.3:a:firejail_project:firejail:0.9.38:*:*:*:*:*:*:*
  • cpe:2.3:a:firejail_project:firejail:0.9.38:*:*:*:-:*:*:*
    cpe:2.3:a:firejail_project:firejail:0.9.38:*:*:*:-:*:*:*
  • cpe:2.3:a:firejail_project:firejail:0.9.38:*:*:*:lts:*:*:*
    cpe:2.3:a:firejail_project:firejail:0.9.38:*:*:*:lts:*:*:*
  • cpe:2.3:a:firejail_project:firejail:0.9.38:-:*:*:*:*:*:*
    cpe:2.3:a:firejail_project:firejail:0.9.38:-:*:*:*:*:*:*
  • cpe:2.3:a:firejail_project:firejail:0.9.38:-:*:*:-:*:*:*
    cpe:2.3:a:firejail_project:firejail:0.9.38:-:*:*:-:*:*:*
  • cpe:2.3:a:firejail_project:firejail:0.9.38:rc1:*:*:*:*:*:*
    cpe:2.3:a:firejail_project:firejail:0.9.38:rc1:*:*:*:*:*:*
  • cpe:2.3:a:firejail_project:firejail:0.9.38.2:*:*:*:*:*:*:*
    cpe:2.3:a:firejail_project:firejail:0.9.38.2:*:*:*:*:*:*:*
  • cpe:2.3:a:firejail_project:firejail:0.9.38.2:*:*:*:-:*:*:*
    cpe:2.3:a:firejail_project:firejail:0.9.38.2:*:*:*:-:*:*:*
  • cpe:2.3:a:firejail_project:firejail:0.9.38.2:*:*:*:lts:*:*:*
    cpe:2.3:a:firejail_project:firejail:0.9.38.2:*:*:*:lts:*:*:*
  • cpe:2.3:a:firejail_project:firejail:0.9.38.4:*:*:*:*:*:*:*
    cpe:2.3:a:firejail_project:firejail:0.9.38.4:*:*:*:*:*:*:*
  • cpe:2.3:a:firejail_project:firejail:0.9.38.4:*:*:*:-:*:*:*
    cpe:2.3:a:firejail_project:firejail:0.9.38.4:*:*:*:-:*:*:*
  • cpe:2.3:a:firejail_project:firejail:0.9.38.4:*:*:*:lts:*:*:*
    cpe:2.3:a:firejail_project:firejail:0.9.38.4:*:*:*:lts:*:*:*
  • cpe:2.3:a:firejail_project:firejail:0.9.38.6:*:*:*:*:*:*:*
    cpe:2.3:a:firejail_project:firejail:0.9.38.6:*:*:*:*:*:*:*
  • cpe:2.3:a:firejail_project:firejail:0.9.38.6:*:*:*:-:*:*:*
    cpe:2.3:a:firejail_project:firejail:0.9.38.6:*:*:*:-:*:*:*
  • cpe:2.3:a:firejail_project:firejail:0.9.38.6:*:*:*:lts:*:*:*
    cpe:2.3:a:firejail_project:firejail:0.9.38.6:*:*:*:lts:*:*:*
  • cpe:2.3:a:firejail_project:firejail:0.9.38.8:*:*:*:*:*:*:*
    cpe:2.3:a:firejail_project:firejail:0.9.38.8:*:*:*:*:*:*:*
  • cpe:2.3:a:firejail_project:firejail:0.9.38.8:*:*:*:-:*:*:*
    cpe:2.3:a:firejail_project:firejail:0.9.38.8:*:*:*:-:*:*:*
  • cpe:2.3:a:firejail_project:firejail:0.9.38.8:*:*:*:lts:*:*:*
    cpe:2.3:a:firejail_project:firejail:0.9.38.8:*:*:*:lts:*:*:*
  • cpe:2.3:a:firejail_project:firejail:0.9.38.10:*:*:*:*:*:*:*
    cpe:2.3:a:firejail_project:firejail:0.9.38.10:*:*:*:*:*:*:*
  • cpe:2.3:a:firejail_project:firejail:0.9.38.10:*:*:*:-:*:*:*
    cpe:2.3:a:firejail_project:firejail:0.9.38.10:*:*:*:-:*:*:*
  • cpe:2.3:a:firejail_project:firejail:0.9.38.12:*:*:*:*:*:*:*
    cpe:2.3:a:firejail_project:firejail:0.9.38.12:*:*:*:*:*:*:*
  • cpe:2.3:a:firejail_project:firejail:0.9.38.12:*:*:*:-:*:*:*
    cpe:2.3:a:firejail_project:firejail:0.9.38.12:*:*:*:-:*:*:*
  • cpe:2.3:a:firejail_project:firejail:0.9.40:*:*:*:*:*:*:*
    cpe:2.3:a:firejail_project:firejail:0.9.40:*:*:*:*:*:*:*
  • cpe:2.3:a:firejail_project:firejail:0.9.40:*:*:*:-:*:*:*
    cpe:2.3:a:firejail_project:firejail:0.9.40:*:*:*:-:*:*:*
  • cpe:2.3:a:firejail_project:firejail:0.9.40:-:*:*:*:*:*:*
    cpe:2.3:a:firejail_project:firejail:0.9.40:-:*:*:*:*:*:*
  • cpe:2.3:a:firejail_project:firejail:0.9.40:-:*:*:-:*:*:*
    cpe:2.3:a:firejail_project:firejail:0.9.40:-:*:*:-:*:*:*
  • cpe:2.3:a:firejail_project:firejail:0.9.40:rc1:*:*:*:*:*:*
    cpe:2.3:a:firejail_project:firejail:0.9.40:rc1:*:*:*:*:*:*
  • cpe:2.3:a:firejail_project:firejail:0.9.42:*:*:*:*:*:*:*
    cpe:2.3:a:firejail_project:firejail:0.9.42:*:*:*:*:*:*:*
  • cpe:2.3:a:firejail_project:firejail:0.9.42:*:*:*:-:*:*:*
    cpe:2.3:a:firejail_project:firejail:0.9.42:*:*:*:-:*:*:*
  • cpe:2.3:a:firejail_project:firejail:0.9.42:-:*:*:*:*:*:*
    cpe:2.3:a:firejail_project:firejail:0.9.42:-:*:*:*:*:*:*
  • cpe:2.3:a:firejail_project:firejail:0.9.42:-:*:*:-:*:*:*
    cpe:2.3:a:firejail_project:firejail:0.9.42:-:*:*:-:*:*:*
  • cpe:2.3:a:firejail_project:firejail:0.9.42:rc1:*:*:*:*:*:*
    cpe:2.3:a:firejail_project:firejail:0.9.42:rc1:*:*:*:*:*:*
  • cpe:2.3:a:firejail_project:firejail:0.9.42:rc2:*:*:*:*:*:*
    cpe:2.3:a:firejail_project:firejail:0.9.42:rc2:*:*:*:*:*:*
  • cpe:2.3:a:firejail_project:firejail:0.9.44:*:*:*:*:*:*:*
    cpe:2.3:a:firejail_project:firejail:0.9.44:*:*:*:*:*:*:*
  • cpe:2.3:a:firejail_project:firejail:0.9.44:*:*:*:-:*:*:*
    cpe:2.3:a:firejail_project:firejail:0.9.44:*:*:*:-:*:*:*
  • cpe:2.3:a:firejail_project:firejail:0.9.44:-:*:*:*:*:*:*
    cpe:2.3:a:firejail_project:firejail:0.9.44:-:*:*:*:*:*:*
  • cpe:2.3:a:firejail_project:firejail:0.9.44:-:*:*:-:*:*:*
    cpe:2.3:a:firejail_project:firejail:0.9.44:-:*:*:-:*:*:*
  • cpe:2.3:a:firejail_project:firejail:0.9.44:rc1:*:*:*:*:*:*
    cpe:2.3:a:firejail_project:firejail:0.9.44:rc1:*:*:*:*:*:*
  • cpe:2.3:a:firejail_project:firejail:0.9.44.2:*:*:*:*:*:*:*
    cpe:2.3:a:firejail_project:firejail:0.9.44.2:*:*:*:*:*:*:*
  • cpe:2.3:a:firejail_project:firejail:0.9.44.2:*:*:*:-:*:*:*
    cpe:2.3:a:firejail_project:firejail:0.9.44.2:*:*:*:-:*:*:*
  • cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
    cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
CVSS
Base: 6.8 (as of 03-10-2019 - 00:03)
Impact:
Exploitability:
CWE NVD-CWE-noinfo
CAPEC
Access
VectorComplexityAuthentication
NETWORK MEDIUM NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL PARTIAL PARTIAL
cvss-vector via4 AV:N/AC:M/Au:N/C:P/I:P/A:P
refmap via4
bid 97120
confirm
gentoo GLSA-201701-62
misc https://blog.lizzie.io/linux-containers-in-500-loc.html#fn.51
mlist [oss-security] 20170107 Re: Firejail local root exploit
Last major update 03-10-2019 - 00:03
Published 23-03-2017 - 16:59
Last modified 03-10-2019 - 00:03
Back to Top