Roman Fiedler discovered a vulnerability in the OverlayFS code in
firejail, a sandbox program to restrict the running environment of
untrusted applications, which could result in root privilege escalation.
This update disables OverlayFS support in firejail.
For the stable distribution (buster), this problem has been fixed in
We recommend that you upgrade your firejail packages.