CVEs-PoC/2021/CVE-2021-26910.md at cc7183ea97ac84df710eda0629eebb73373c1e84

CalvinBackup/CVEs-PoC

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2026-05-09 23:27:33 +02:00

Files

T

0xMarcio 48a00929ac Removed duplicates

2024-06-18 02:51:15 +02:00

998 B

Raw Blame History

CVE-2021-26910

Description

Firejail before 0.9.64.4 allows attackers to bypass intended access restrictions because there is a TOCTOU race condition between a stat operation and an OverlayFS mount operation.

POC

Reference

http://www.openwall.com/lists/oss-security/2021/02/09/1
https://github.com/netblue30/firejail/commit/97d8a03cad19501f017587cc4e47d8418273834b
https://github.com/netblue30/firejail/releases/tag/0.9.64.4
https://unparalleled.eu/publications/2021/advisory-unpar-2021-0.txt

Github

https://github.com/netblue30/firejail
https://github.com/orgTestCodacy11KRepos110MB/repo-1121-firejail
https://github.com/sailfishos-mirror/firejail

998 B Raw Blame History

CVE-2021-26910

Description

POC

Reference

Github

998 B

Raw Blame History