FS#52381 - [firejail]local root exploit (CVE-2017-5180)

Attached to Project: Community Packages
Opened by Filip Frackiewicz (notreallyhere) - Thursday, 05 January 2017, 21:20 GMT
Last edited by Levente Polyak (anthraxx) - Tuesday, 17 January 2017, 17:01 GMT
Task Type Bug Report
Category Security
Status Closed
Assigned To Sergej Pupykin (sergej)
Architecture All
Severity High
Priority Normal
Reported Version
Due in Version Undecided
Due Date Undecided
Percent Complete 100%
Votes 0
Private No

Details

Firejail has a local root exploit as of version 0.9.44.

Proof of concept: http://seclists.org/oss-sec/2017/q1/att-20/firenail_c.bin

Description of the issue: http://seclists.org/oss-sec/2017/q1/21

Possible fix #1: https://github.com/hashbang/shell-etc/pull/133

And some security fixes committed on firejail's github: https://github.com/netblue30/firejail/commit/60d4b478f65c60bcc825bb56f85fd6c4fd48b250#commitcomment-20366636
This task depends upon

Closed by  Levente Polyak (anthraxx)
Tuesday, 17 January 2017, 17:01 GMT
Reason for closing:  Fixed
Additional comments about closing:  0.9.44.6-1
Comment by Levente Polyak (anthraxx) - Thursday, 05 January 2017, 22:19 GMT
That commit alone won't solve anything, we need both:
https://github.com/netblue30/firejail/commit/60d4b478f65c60bcc825bb56f85fd6c4fd48b250
https://github.com/netblue30/firejail/commit/e74fdab5d2125ce8f058c1630ce7cce19cbdac16
Comment by Filip Frackiewicz (notreallyhere) - Friday, 06 January 2017, 23:36 GMT
There's another security fix that may be worth considering:

https://github.com/netblue30/firejail/commit/85517885bece9209bbcace80fec115b0126263ad
Comment by Levente Polyak (anthraxx) - Saturday, 07 January 2017, 18:51 GMT
another one for this wonky....
https://github.com/netblue30/firejail/commit/5d43fdcd215203868d440ffc42036f5f5ffc89fc

Loading...