Qualys discovered that needrestart, before version 3.8, allows local attackers to execute arbitrary code as root by tricking needrestart into running the Ruby interpreter with an attacker-controlled RUBYLIB environment variable.
{ "availability": "Available with Ubuntu Pro: https://ubuntu.com/pro", "ubuntu_priority": "high", "binaries": [ { "binary_version": "2.6-1ubuntu0.1~esm1", "binary_name": "needrestart" } ], "priority_reason": "Local privilege escalation" }
{ "availability": "Available with Ubuntu Pro: https://ubuntu.com/pro", "ubuntu_priority": "high", "binaries": [ { "binary_version": "3.1-1ubuntu0.1+esm1", "binary_name": "needrestart" } ], "priority_reason": "Local privilege escalation" }
{ "ubuntu_priority": "high", "priority_reason": "Local privilege escalation" }
{ "availability": "Available with Ubuntu Pro: https://ubuntu.com/pro", "ubuntu_priority": "high", "binaries": [ { "binary_version": "3.4-6ubuntu0.1+esm1", "binary_name": "needrestart" } ], "priority_reason": "Local privilege escalation" }
{ "availability": "No subscription required", "ubuntu_priority": "high", "binaries": [ { "binary_version": "3.5-5ubuntu2.2", "binary_name": "needrestart" } ], "priority_reason": "Local privilege escalation" }
{ "availability": "No subscription required", "ubuntu_priority": "high", "binaries": [ { "binary_version": "3.6-8ubuntu4.2", "binary_name": "needrestart" } ], "priority_reason": "Local privilege escalation" }
{ "availability": "No subscription required", "ubuntu_priority": "high", "binaries": [ { "binary_version": "3.6-7ubuntu4.3", "binary_name": "needrestart" } ], "priority_reason": "Local privilege escalation" }