2017-01-09 19:57:01 |
Reiner Herrmann |
bug |
|
|
added bug |
2017-01-09 19:57:01 |
Reiner Herrmann |
attachment added |
|
firejail.diff https://bugs.launchpad.net/bugs/1655136/+attachment/4802095/+files/firejail.diff |
|
2017-01-09 20:00:22 |
Reiner Herrmann |
cve linked |
|
2017-5180 |
|
2017-01-09 20:00:47 |
Reiner Herrmann |
cve linked |
|
2016-9016 |
|
2017-01-09 20:01:02 |
Reiner Herrmann |
cve linked |
|
2016-10118 |
|
2017-01-09 20:03:15 |
Reiner Herrmann |
description |
firejail 0.9.38 is affected by CVE-2016-9016, CVE-2016-10118, CVE-2017-5180.
Please apply the attached debdiff. |
firejail 0.9.38 is affected by the following CVEs:
- CVE-2016-9016: sandbox escape
- CVE-2016-10118: overwrite /etc/resolv.conf
- CVE-2017-5180: local root exploit
Please apply the attached debdiff.
firejail 0.9.40 is also affected by those (and perhaps other) CVEs. It still needs to be checked by which ones exactly.
I will file a separate bug for it. |
|
2017-01-09 20:06:03 |
Reiner Herrmann |
bug |
|
|
added subscriber Ubuntu Security Sponsors Team |
2017-01-09 20:06:10 |
Mattia Rizzolo |
nominated for series |
|
Ubuntu Xenial |
|
2017-01-09 20:06:10 |
Mattia Rizzolo |
bug task added |
|
firejail (Ubuntu Xenial) |
|
2017-01-09 20:06:10 |
Mattia Rizzolo |
nominated for series |
|
Ubuntu Zesty |
|
2017-01-09 20:06:10 |
Mattia Rizzolo |
bug task added |
|
firejail (Ubuntu Zesty) |
|
2017-01-09 20:06:28 |
Mattia Rizzolo |
firejail (Ubuntu Xenial): status |
New |
In Progress |
|
2017-01-09 20:06:34 |
Mattia Rizzolo |
firejail (Ubuntu Xenial): assignee |
|
Reiner Herrmann (deki) |
|
2017-01-09 20:06:38 |
Mattia Rizzolo |
firejail (Ubuntu Zesty): status |
New |
Fix Released |
|
2017-01-09 20:07:06 |
Mattia Rizzolo |
firejail (Ubuntu Zesty): importance |
Undecided |
High |
|
2017-01-09 20:07:08 |
Mattia Rizzolo |
firejail (Ubuntu Xenial): importance |
Undecided |
High |
|
2017-01-09 20:07:26 |
Mattia Rizzolo |
bug |
|
|
added subscriber Mattia Rizzolo |
2017-01-09 20:26:54 |
Reiner Herrmann |
description |
firejail 0.9.38 is affected by the following CVEs:
- CVE-2016-9016: sandbox escape
- CVE-2016-10118: overwrite /etc/resolv.conf
- CVE-2017-5180: local root exploit
Please apply the attached debdiff.
firejail 0.9.40 is also affected by those (and perhaps other) CVEs. It still needs to be checked by which ones exactly.
I will file a separate bug for it. |
firejail 0.9.38 is affected by the following CVEs:
- CVE-2016-9016: sandbox escape
- CVE-2016-10118: overwrite /etc/resolv.conf
- CVE-2017-5180: local root exploit
Please apply the attached debdiff.
firejail 0.9.40 is also affected by those (and perhaps other) CVEs.
But fixing that looks like a bit more effort (patches don't apply cleanly), and there were several related upstream commits that attempted to fix them. |
|
2017-01-10 00:04:09 |
Mathew Hodson |
information type |
Public |
Public Security |
|
2017-01-10 00:05:44 |
Mathew Hodson |
tags |
|
patch |
|
2017-01-17 10:41:46 |
Pjotr12345 |
firejail (Ubuntu Xenial): status |
In Progress |
Fix Committed |
|
2017-01-17 11:03:26 |
Mattia Rizzolo |
firejail (Ubuntu Xenial): status |
Fix Committed |
In Progress |
|
2017-01-17 19:18:38 |
Reiner Herrmann |
attachment removed |
firejail.diff https://bugs.launchpad.net/ubuntu/+source/firejail/+bug/1655136/+attachment/4802095/+files/firejail.diff |
|
|
2017-01-17 19:19:23 |
Reiner Herrmann |
attachment added |
|
firejail.diff https://bugs.launchpad.net/ubuntu/+source/firejail/+bug/1655136/+attachment/4805479/+files/firejail.diff |
|
2017-01-24 12:16:35 |
Launchpad Janitor |
firejail (Ubuntu Xenial): status |
In Progress |
Fix Released |
|