Firejail through 0.9.62 mishandles shell metacharacters during use of the --output or --output-stderr option, which may lead to command injection. External Reference: https://www.debian.org/security/2020/dsa-4742
Created firejail tracking bugs for this issue: Affects: fedora-all [bug 1868338]
This CVE Bugzilla entry is for community support informational purposes only as it does not affect a package in a commercially supported Red Hat product. Refer to the dependent bugs for status of those individual community products.