CLSA-2024-1733429722

See a problem?
Import Source
https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu18.04els/CLSA-2024-1733429722.json
JSON Data
https://api.test.osv.dev/v1/vulns/CLSA-2024-1733429722
Upstream
Published
2024-12-05T20:15:27Z
Modified
2026-06-04T09:47:16.556819251Z
Summary
Fix CVE(s): CVE-2024-48992
Details
  • SECURITY UPDATE: Arbitrary code execution via manipulated RUBYLIB environment variable
    • debian/patches/CVE-2024-48992.patch: Prevent script from setting RUBYLIB environment variable to avoid LPE
    • CVE-2024-48992
References

Affected packages

TuxCare:Ubuntu:18.04 / needrestart

Package

Name
needrestart
Purl
pkg:deb/tuxcare/needrestart?distro=ubuntu-18.04

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
3.1-1ubuntu0.1+tuxcare.els4

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu18.04els/CLSA-2024-1733429722.json"