Attached is a debdiff that backports the upstream fix for this issue, which disables the vulnerable overlayfs support (which was anyway broken on recent kernel versions).
It compiles in an Ubuntu Focal chroot. I also verified that after installation in the same chroot the overlayfs suppor is disabled (firejail --version -> "overlayfs support is disabled"). -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1916767 Title: firejail version in Ubuntu 20.04 LTS is vulnarable to CVE-2021-26910 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/firejail/+bug/1916767/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
