製品・ソフトウェアに関する情報

JVN脆弱性詳細

Firejail におけるサンドボックスのエスケープ攻撃を実行される脆弱性

Title	Firejail におけるサンドボックスのエスケープ攻撃を実行される脆弱性
Summary	Firejail には、サンドボックスのエスケープ攻撃を実行される脆弱性が存在します。本脆弱性は、CVE-2017-5180 に対する修正が不完全だったことに起因する問題です。
Possible impacts	ローカルユーザにより、サンドボックスのエスケープ攻撃を実行される可能性があります。
Solution	ベンダより正式な対策が公開されています。ベンダ情報を参照して適切な対策を実施してください。
Publication Date	Jan. 15, 2017, midnight
Registration Date	March 31, 2017, 4:50 p.m.
Last Update	March 31, 2017, 4:50 p.m.

Affected System

Firejail project

Firejail 0.9.38.10 LTS 未満の 0.9.38.x LTS

Firejail 0.9.44.6 未満

CVE (情報セキュリティ共通脆弱性識別子)

No	Name	URL
Common Vulnerabilities and Exposures (CVE)
1	CVE-2017-5940	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5940
National Vulnerability Database (NVD)
2	CVE-2017-5940	https://nvd.nist.gov/vuln/detail/CVE-2017-5940

CWE (共通脆弱性タイプ一覧)

No	Name	URL
JVNDB
1	CWE-284	https://cwe.mitre.org/data/definitions/284.html

ベンダー情報

No	Name	URL
Firejail
1	Release Notes	https://firejail.wordpress.com/download-2/release-notes/
GitHub
2	replace copy_file with copy_file_as_user	https://github.com/netblue30/firejail/commit/b8a4ff9775318ca5e679183884a6a63f3da8f863
3	security fix (38d4185)	https://github.com/netblue30/firejail/commit/38d418505e9ee2d326557e5639e8da49c298858f
4	security fix (903fd8a)	https://github.com/netblue30/firejail/commit/903fd8a0789ca3cc3c21d84cd0282481515592ef

Change Log

No	Changed Details	Date of change
0	[2017年03月31日] 掲載	Feb. 17, 2018, 10:37 a.m.

NVD Vulnerability Information

CVE-2017-5940

Summary	Firejail before 0.9.44.6 and 0.9.38.x LTS before 0.9.38.10 LTS does not comprehensively address dotfile cases during its attempt to prevent accessing user files with an euid of zero, which allows local users to conduct sandbox-escape attacks via vectors involving a symlink and the --private option. NOTE: this vulnerability exists because of an incomplete fix for CVE-2017-5180.
Publication Date	Feb. 10, 2017, 3:59 a.m.
Registration Date	Jan. 26, 2021, 1:26 p.m.
Last Update	Nov. 21, 2024, 12:28 p.m.

Affected software configurations

Configuration1	or higher	or less	more than	less than
cpe:2.3:a:firejail_project:firejail:::::lts:::*	0.9.38	0.9.38.10
cpe:2.3:a:firejail_project:firejail::::::::	0.9.40	0.9.44.6

Related information, measures and tools

No	URL	タグ
1	http://www.openwall.com/lists/oss-security/2017/01/31/16	Mailing List Patch Third Party Advisory
2	http://www.openwall.com/lists/oss-security/2017/01/31/16	Mailing List Patch Third Party Advisory
3	http://www.securityfocus.com/bid/96221	Third Party Advisory VDB Entry
4	http://www.securityfocus.com/bid/96221	Third Party Advisory VDB Entry
5	https://firejail.wordpress.com/download-2/release-notes/	Release Notes Vendor Advisory
6	https://firejail.wordpress.com/download-2/release-notes/	Release Notes Vendor Advisory
7	https://github.com/netblue30/firejail/commit/38d418505e9ee2d326557e5639e8da49c298858f	Issue Tracking Patch Third Party Advisory
8	https://github.com/netblue30/firejail/commit/38d418505e9ee2d326557e5639e8da49c298858f	Issue Tracking Patch Third Party Advisory
9	https://github.com/netblue30/firejail/commit/903fd8a0789ca3cc3c21d84cd0282481515592ef	Issue Tracking Patch Third Party Advisory
10	https://github.com/netblue30/firejail/commit/903fd8a0789ca3cc3c21d84cd0282481515592ef	Issue Tracking Patch Third Party Advisory
11	https://github.com/netblue30/firejail/commit/b8a4ff9775318ca5e679183884a6a63f3da8f863	Issue Tracking Patch Third Party Advisory
12	https://github.com/netblue30/firejail/commit/b8a4ff9775318ca5e679183884a6a63f3da8f863	Issue Tracking Patch Third Party Advisory
13	https://security.gentoo.org/glsa/201702-03	Third Party Advisory
14	https://security.gentoo.org/glsa/201702-03	Third Party Advisory

Common Vulnerabilities List

No	CWE	Name	URL
1	CWE-269	不適切な権限管理	https://cwe.mitre.org/data/definitions/269.html