---

CVE-2017-7794 - log back

CVE-2017-7794 created at 25 Sep 2019 19:31:40
Severity	+ Medium
Remote	+ Local
Type	+ Sandbox escape
Description	+ A security issue has been found in Firefox < 55.0. On Linux systems, if the content process is compromised, the sandbox broker will allow files to be truncated even though the sandbox explicitly only has read access to the local file system and no write permissions.
References	+ https://www.mozilla.org/en-US/security/advisories/mfsa2017-18/#CVE-2017-7794 + https://bugzilla.mozilla.org/show_bug.cgi?id=1374281
Notes