Security News Decades-Old Security Vulnerabilities Found in Ubuntu's Needrestart Package

Thread starter Captain Awesome
Start date Nov 20, 2024

Captain Awesome

Level 24

Thread author

Verified

Top Poster

Well-known

Nov 20, 2024

#1

Content source: https://thehackernews.com/2024/11/decades-old-security-vulnerabilities.html?m=1

Multiple decade-old security vulnerabilities have been disclosed in the needrestart package installed by default in Ubuntu Server (since version 21.04) that could allow a local attacker to gain root privileges without requiring user interaction.

The Qualys Threat Research Unit (TRU), which identified and reported the flaws early last month, said they are trivial to exploit, necessitating that users move quickly to apply the fixes. The vulnerabilities are believed to have existed since the introduction of interpreter support in needrestart 0.8, which was released on April 27, 2014.

thehackernews.com

Decades-Old Security Vulnerabilities Found in Ubuntu's Needrestart Package

Critical Ubuntu needrestart flaws allow local root privilege escalation; update immediately to safeguard systems.

thehackernews.com

thehackernews.com

Reactions: Gandalf_The_Grey, Adrian Ścibor, harlan4096 and 1 other person

Similar threads

Security News OSS-Fuzz used to help identify 26 vulnerabilities in open-source code repositories

Replies: 0

Views: 125

Security News Nov 21, 2024

simmerskool

Security News 59,000 D-Link Modems Exposed with Severe Security Vulnerabilities

Replies: 0

Views: 393

Security News Nov 12, 2024

enaph

Security News Anyone Can Buy Data Tracking US Soldiers and Spies to Nuclear Vaults and Brothels in Germany

Replies: 1

Views: 281

Security News Nov 24, 2024

oldschool

Top