A vulnerability has been discovered when providing a custom shell as a parameter to the firejail bandwidth command By making this custom shell ignore the -c (for command) option, an attacker can execute an arbitrary command to, for example, obtain a root shell ...