FYI, from the last blackhat conference: https://zplin.me/papers/DirtyCred-Zhenpeng.pdf
It’s a root escalation bug in the Linux kernel of the dirtypipe family of exploits.
Github repo: GitHub - Markakd/DirtyCred
An article on the topic: New Linux Exploit 'Dirty Cred' Revealed at Black Hat | eSecurityPlanet
Possibly IPFire is vulnerable to this exploit.