Firejail prior to 0.9.64.4 allows malicious users to bypass intended access restrictions because there is a TOCTOU race condition between a stat operation and an OverlayFS mount operation.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
firejail project firejail |
||
debian debian linux 9.0 |
||
debian debian linux 10.0 |