diff options
| author |  netblue30 <netblue30@protonmail.com> | 2021-02-08 09:01:33 -0500 |
|---|---|---|
| committer | netblue30 <netblue30@protonmail.com> | 2021-02-08 09:01:33 -0500 |
| commit | 703f16069a9aac0e79aa0fe1709400627ad7795f (patch) | |
| tree | f10006d36fa6bab8ffc3e061cedd3028de0ee121 /README.md | |
| parent | security advisory (diff) | |
| download | firejail-703f16069a9aac0e79aa0fe1709400627ad7795f.tar.gz firejail-703f16069a9aac0e79aa0fe1709400627ad7795f.tar.zst firejail-703f16069a9aac0e79aa0fe1709400627ad7795f.zip | |
formating
Diffstat (limited to 'README.md')
| -rw-r--r-- | README.md | 9 |
1 files changed, 6 insertions, 3 deletions
| @@ -86,11 +86,14 @@ We take security bugs very seriously. If you believe you have found one, please | |||
| 86 | ````` | 86 | ````` |
| 87 | Security Adivsory - Feb 8, 2021 | 87 | Security Adivsory - Feb 8, 2021 |
| 88 | 88 | ||
| 89 | Summary: A vulnerability resulting in root privilege escalation was discovered in Firejail's OverlayFS code, | 89 | Summary: A vulnerability resulting in root privilege escalation was discovered in |
| 90 | Firejail's OverlayFS code, | ||
| 90 | 91 | ||
| 91 | Versions affected: Firejail software versions starting with 0.9.30. Long Term Support (LTS) Firejail branch is not affected by this bug. | 92 | Versions affected: Firejail software versions starting with 0.9.30. |
| 93 | Long Term Support (LTS) Firejail branch is not affected by this bug. | ||
| 92 | 94 | ||
| 93 | Workaround: Disable overlayfs feature at runtime. In a text editor open /etc/firejail/firejail.config file, and set "overlayfs" entry to "no". | 95 | Workaround: Disable overlayfs feature at runtime. |
| 96 | In a text editor open /etc/firejail/firejail.config file, and set "overlayfs" entry to "no". | ||
| 94 | 97 | ||
| 95 | $ grep overlayfs /etc/firejail/firejail.config | 98 | $ grep overlayfs /etc/firejail/firejail.config |
| 96 | # Enable or disable overlayfs features, default enabled. | 99 | # Enable or disable overlayfs features, default enabled. |