DEBIAN-CVE-2017-5226

DEBIAN-CVE-2017-5226 PUBLISHED CVSS 10 CRITICAL

When executing a program via the bubblewrap sandbox, the nonpriv session can escape to the parent session by using the TIOCSTI ioctl to push characters into the terminal's input buffer, allowing an attacker to escape the sandbox.

Risk Scores

CVSS v3.0

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

Affected Products

Vendor	Product	Versions
Debian:13	bubblewrap	0, 0, 0
Debian:11	bubblewrap	0, 0, 0
Debian:14	bubblewrap	0, 0, 0
Debian:12	bubblewrap	0, 0, 0

Timeline

Mar 29, 2017 CVE Published
Apr 28, 2026 CVE Updated

References

https://security-tracker.debian.org/tracker/CVE-2017-5226 advisory

Open in Interactive Console →