A Privilege Context Switching issue was discovered in join.c in Firejail 0.9.68. By crafting a bogus Firejail container that is accepted by the Firejail setuid-root program as a join target, a local attacker can enter an environment in which the Linux user namespace is still the initial user namespace, the NO_NEW_PRIVS prctl is not activated, and the entered mount namespace is under the attacker's control. In this way, the filesystem layout can be adjusted to gain root privileges through execution of available setuid-root binaries such as su or sudo.
References
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
Configuration 3 (hide)
|
History
07 Nov 2023, 03:47
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
03 May 2023, 12:16
Type | Values Removed | Values Added |
---|---|---|
References |
|
27 Oct 2022, 16:15
Type | Values Removed | Values Added |
---|---|---|
References | (DEBIAN) https://www.debian.org/security/2022/dsa-5167 - Third Party Advisory | |
References | (FEDORA) https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KUZZ5M6LIBYRKTKGROXC47TDC3FRTGJF/ - Mailing List, Third Party Advisory | |
References | (MISC) https://firejail.wordpress.com/download-2/release-notes/ - Release Notes, Third Party Advisory | |
References | (MLIST) https://lists.debian.org/debian-lts-announce/2022/06/msg00023.html - Mailing List, Third Party Advisory | |
References | (FEDORA) https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6RZOTZ36RUSL6DOVHITY25ZYKWTG5HN3/ - Mailing List, Third Party Advisory | |
References | (FEDORA) https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SIBEBE3KFINMGJATBQQS7D2VQQ62ZVMF/ - Mailing List, Third Party Advisory | |
First Time |
Fedoraproject
Debian debian Linux Debian Fedoraproject fedora |
|
CPE | cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:* cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:* cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:* cpe:2.3:o:fedoraproject:fedora:37:*:*:*:*:*:*:* cpe:2.3:o:fedoraproject:fedora:36:*:*:*:*:*:*:* |
15 Sep 2022, 05:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
14 Sep 2022, 11:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
29 Jun 2022, 22:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
23 Jun 2022, 17:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
17 Jun 2022, 19:44
Type | Values Removed | Values Added |
---|---|---|
CVSS |
v2 : v3 : |
v2 : 7.2
v3 : 7.8 |
CPE | cpe:2.3:a:firejail_project:firejail:0.9.68:*:*:*:*:*:*:* | |
First Time |
Firejail Project
Firejail Project firejail |
|
CWE | CWE-269 | |
References | (MISC) https://www.openwall.com/lists/oss-security/2022/06/08/10 - Mailing List, Patch, Third Party Advisory | |
References | (MISC) https://firejail.wordpress.com/download-2/release-notes/ - Release Notes |
09 Jun 2022, 16:42
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-06-09 16:15
Updated : 2023-12-10 14:22
NVD link : CVE-2022-31214
Mitre link : CVE-2022-31214
CVE.ORG link : CVE-2022-31214
JSON object : View
Products Affected
fedoraproject
- fedora
debian
- debian_linux
firejail_project
- firejail
CWE
CWE-269
Improper Privilege Management