UBUNTU-CVE-2024-48992

Qualys discovered that needrestart, before version 3.8, allows local attackers to execute arbitrary code as root by tricking needrestart into running the Ruby interpreter with an attacker-controlled RUBYLIB environment variable.

References

Affected packages

Ubuntu:22.04:LTS

needrestart

Package

Name: needrestart
Purl: pkg:deb/ubuntu/needrestart@3.5-5ubuntu2.2?arch=source&distro=jammy

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

3.5-5ubuntu2.2

Affected versions

3.*

3.5-4ubuntu2

3.5-5ubuntu1

3.5-5ubuntu2

3.5-5ubuntu2.1

Ecosystem specific

{
    "priority_reason": "Local privilege escalation",
    "availability": "No subscription required",
    "binaries": [
        {
            "binary_name": "needrestart",
            "binary_version": "3.5-5ubuntu2.2"
        }
    ]
}

Ubuntu:24.04:LTS

needrestart

Package

Name: needrestart
Purl: pkg:deb/ubuntu/needrestart@3.6-7ubuntu4.3?arch=source&distro=noble

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

3.6-7ubuntu4.3

Affected versions

3.*

3.6-5

3.6-6

3.6-7

3.6-7ubuntu3

3.6-7ubuntu4

3.6-7ubuntu4.1

Ecosystem specific

{
    "priority_reason": "Local privilege escalation",
    "availability": "No subscription required",
    "binaries": [
        {
            "binary_name": "needrestart",
            "binary_version": "3.6-7ubuntu4.3"
        }
    ]
}

Ubuntu:25.04

needrestart

Package

Name: needrestart
Purl: pkg:deb/ubuntu/needrestart@3.6-8ubuntu6?arch=source&distro=plucky

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

3.6-8ubuntu6

Affected versions

3.*

3.6-8ubuntu4

3.6-8ubuntu5

Ecosystem specific

{
    "priority_reason": "Local privilege escalation",
    "availability": "No subscription required",
    "binaries": [
        {
            "binary_name": "needrestart",
            "binary_version": "3.6-8ubuntu6"
        }
    ]
}

Ubuntu:Pro:16.04:LTS

needrestart

Package

Name: needrestart
Purl: pkg:deb/ubuntu/needrestart@2.6-1ubuntu0.1~esm1?arch=source&distro=esm-apps/xenial

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.6-1ubuntu0.1~esm1

Affected versions

2.*

2.1-1

2.3-2

2.4-1

2.5-1

2.6-1

Ecosystem specific

{
    "priority_reason": "Local privilege escalation",
    "availability": "Available with Ubuntu Pro: https://ubuntu.com/pro",
    "binaries": [
        {
            "binary_name": "needrestart",
            "binary_version": "2.6-1ubuntu0.1~esm1"
        }
    ]
}

Ubuntu:Pro:18.04:LTS

needrestart

Package

Name: needrestart
Purl: pkg:deb/ubuntu/needrestart@3.1-1ubuntu0.1+esm1?arch=source&distro=esm-apps/bionic

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

3.1-1ubuntu0.1+esm1

Affected versions

2.*

2.11-4

3.*

3.0-1

3.1-1

3.1-1ubuntu0.1

Ecosystem specific

{
    "priority_reason": "Local privilege escalation",
    "availability": "Available with Ubuntu Pro: https://ubuntu.com/pro",
    "binaries": [
        {
            "binary_name": "needrestart",
            "binary_version": "3.1-1ubuntu0.1+esm1"
        }
    ]
}

Ubuntu:Pro:20.04:LTS

needrestart

Package

Name: needrestart
Purl: pkg:deb/ubuntu/needrestart@3.4-6ubuntu0.1+esm1?arch=source&distro=esm-apps/focal

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

3.4-6ubuntu0.1+esm1

Affected versions

3.*

3.4-5

3.4-6

3.4-6ubuntu0.1

Ecosystem specific

{
    "priority_reason": "Local privilege escalation",
    "availability": "Available with Ubuntu Pro: https://ubuntu.com/pro",
    "binaries": [
        {
            "binary_name": "needrestart",
            "binary_version": "3.4-6ubuntu0.1+esm1"
        }
    ]
}