| CVE-2017-5180 | Hig | 0.60 | 8.8 | 0.00 | | Feb 9, 2017 | Firejail before 0.9.44.4 and 0.9.38.x LTS before 0.9.38.8 LTS does not consider the .Xauthority case during its attempt to prevent accessing user files with an euid of zero, which allows local users to conduct sandbox-escape attacks via vectors involving a symlink and the --private option. |
| CVE-2017-5206 | Cri | 0.59 | 9.0 | 0.02 | | Mar 23, 2017 | Firejail before 0.9.44.4, when running on a Linux kernel before 4.8, allows context-dependent attackers to bypass a seccomp-based sandbox protection mechanism via the --allow-debuggers argument. |
| CVE-2017-5940 | Hig | 0.57 | 8.8 | 0.00 | | Feb 9, 2017 | Firejail before 0.9.44.6 and 0.9.38.x LTS before 0.9.38.10 LTS does not comprehensively address dotfile cases during its attempt to prevent accessing user files with an euid of zero, which allows local users to conduct sandbox-escape attacks via vectors involving a symlink and the --private option. NOTE: this vulnerability exists because of an incomplete fix for CVE-2017-5180. |
| CVE-2016-10123 | Hig | 0.51 | 7.8 | 0.00 | | Apr 13, 2017 | Firejail allows --chroot when seccomp is not supported, which might allow local users to gain privileges. |
| CVE-2016-10122 | Hig | 0.51 | 7.8 | 0.00 | | Apr 13, 2017 | Firejail does not properly clean environment variables, which allows local users to gain privileges. |
| CVE-2016-10121 | Hig | 0.51 | 7.8 | 0.00 | | Apr 13, 2017 | Firejail uses weak permissions for /dev/shm/firejail and possibly other files, which allows local users to gain privileges. |
| CVE-2016-10120 | Hig | 0.51 | 7.8 | 0.00 | | Apr 13, 2017 | Firejail uses 0777 permissions when mounting (1) /dev, (2) /dev/shm, (3) /var/tmp, or (4) /var/lock, which allows local users to gain privileges. |
| CVE-2016-10119 | Hig | 0.51 | 7.8 | 0.00 | | Apr 13, 2017 | Firejail uses 0777 permissions when mounting /tmp, which allows local users to gain privileges. |
| CVE-2017-5207 | Hig | 0.51 | 7.8 | 0.00 | | Mar 23, 2017 | Firejail before 0.9.44.4, when running a bandwidth command, allows local users to gain root privileges via the --shell argument. |
| CVE-2016-10118 | Low | 0.21 | 3.3 | 0.00 | | Apr 13, 2017 | Firejail allows local users to truncate /etc/resolv.conf via a chroot command to /. |
