oss-sec mailing list archives

Re: Re: Firejail local root exploit

From: Martin Carpenter <martin.carpenter () gmail com>
Date: Sun, 08 Jan 2017 18:52:40 +0100

On Sun, 2017-01-08 at 10:23 -0500, Brad Spengler wrote:

You're missing an important part here: checking to see whether your binary is running
with privilege in the first place.


Aha. Good. The more I thought it over the more awful it seemed, so
that's a relief. Thanks!

Nothing to see here, but thanks for scaring everyone on a Sunday morning.


Heh, my pleasure :) An epiphany on Epiphany, ha.

Current thread:

Firejail local root exploit Sebastian Krahmer (Jan 04)
- Re: Firejail local root exploit cve-assign (Jan 04)
  - Re: Re: Firejail local root exploit Martin Carpenter (Jan 05)
    - Re: Firejail local root exploit cve-assign (Jan 06)
    - Re: Re: Firejail local root exploit sivmu (Jan 06)
    - Re: Re: Firejail local root exploit Martin Carpenter (Jan 07)
    - Re: Re: Firejail local root exploit Martin Carpenter (Jan 08)
    - Re: Re: Firejail local root exploit Simon McVittie (Jan 08)
    - Re: Re: Firejail local root exploit Brad Spengler (Jan 08)
    - Re: Re: Firejail local root exploit Martin Carpenter (Jan 08)
    - Re: Re: Firejail local root exploit Lizzie Dixon (Jan 06)
    - Re: Firejail local root exploit cve-assign (Jan 07)
    - Re: Re: Firejail local root exploit Martin Carpenter (Jan 07)
    - Re: Firejail local root exploit cve-assign (Jan 07)
  - Re: Re: Firejail local root exploit Marcus Meissner (Jan 06)
    - Re: Firejail local root exploit cve-assign (Jan 06)
- Re: Firejail local root exploit KellerFuchs (Jan 05)
- Re: Firejail local root exploit Ion Ionescu (Jan 29)
  - Re: Re: Firejail local root exploit Thomas Deutschmann (Jan 31)
- <Possible follow-ups>
- Re: Re: Firejail local root exploit Thomas Deutschmann (Feb 09)