Ubuntu
firejail package

  1. Bug #1916767
  2. Comment #10

Comment 10 for bug 1916767

Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package firejail - 0.9.62-3ubuntu0.1

---------------
firejail (0.9.62-3ubuntu0.1) focal-security; urgency=low

  * SECURITY UPDATE: bypass of access restrictions (LP: #1916767)
    - disable OverlayFS support which contains a TOCTOU race condition
      between a stat operation and an OverlayFS mount.
    - CVE-2021-26910

 -- Reiner Herrmann <email address hidden> Sat, 27 Mar 2021 15:20:50 +0000