CVE-2026-41163

EUVD-2026-28884
bubblewrap is a low-level unprivileged sandboxing tool. From version 0.11.0 to before version 0.11.2, if bubblewrap is installed in setuid mode then the user can use ptrace to attach to bubblewrap and control the unprivileged part of the sandbox setup phase. This allows the attacker to arbitrarily use the privileged operations, and in particular the "overlay mount" operation, allowing the creation of overlay mounts which is otherwise not allowed in the setuid version of bubblewrap. This issue has been patched in version 0.11.2.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
UNKNOWN
---
Awaiting analysis
This vulnerability is currently awaiting analysis.
Base Score
CVSS 3.x
EPSS Score
Percentile: 27%
Debian logo
Debian Releases
Debian Product
Codename
bubblewrap
bookworm
0.8.0-2+deb12u1
fixed
bookworm (security)
0.8.0-2+deb12u1
fixed
bullseye
0.4.1-3
fixed
bullseye (security)
0.4.1-3+deb11u1
fixed
forky
0.11.2-2
fixed
sid
0.11.2-2
fixed
trixie
0.11.0-2+deb13u1
fixed
openSUSE logo
openSUSE / SLES Releases
openSUSE Product
Release
bubblewrap
suse enterprise desktop 15 SP7
0.11.0-150500.3.12.1
fixed
suse enterprise sap 15 SP5
0.11.0-150500.3.12.1
fixed
suse enterprise sap 15 SP6
0.11.0-150500.3.12.1
fixed
suse enterprise sap 15 SP7
0.11.0-150500.3.12.1
fixed
suse enterprise server 15 SP5
0.11.0-150500.3.12.1
fixed
suse enterprise server 15 SP6
0.11.0-150500.3.12.1
fixed
suse enterprise server 15 SP7
0.11.0-150500.3.12.1
fixed
bubblewrap-zsh-completion
suse enterprise desktop 15 SP7
0.11.0-150500.3.12.1
fixed
suse enterprise sap 15 SP5
0.11.0-150500.3.12.1
fixed
suse enterprise sap 15 SP6
0.11.0-150500.3.12.1
fixed
suse enterprise sap 15 SP7
0.11.0-150500.3.12.1
fixed
suse enterprise server 15 SP5
0.11.0-150500.3.12.1
fixed
suse enterprise server 15 SP6
0.11.0-150500.3.12.1
fixed
suse enterprise server 15 SP7
0.11.0-150500.3.12.1
fixed
Common Weakness Enumeration
References
https://github.com/containers/bubblewrap/releases/tag/v0.11.2
https://github.com/containers/bubblewrap/security/advisories/GHSA-xq78-7hw4-5jvp