Firejail TOCTOU Race Condition
Posted by deepcore on February 20, 2021 – 12:46 pm
This program demonstrates a time-of-check-time-of-use TOCTOU vulnerability in Firejail. Winning it causes Firejail to create an insecure overlayfs layout, that is then used to escalate privileges by making /etc/ld.so.preload user writable.
Post a reply
You must be logged in to post a comment.