CVE-2021-26910

Published February 8th, 2021

View on NVD ↗

CVSS v3

7.8

HIGH

CVSS v2

6.9

MEDIUM

Affected

PROJECT

Description

Firejail before 0.9.64.4 allows attackers to bypass intended access restrictions because there is a TOCTOU race condition between a stat operation and an OverlayFS mount operation.

netblue30/firejail

Linux namespaces and seccomp-bpf sandbox

GitHub

7.44K