Описание
needrestart 0.8 through 3.5 before 3.6 is prone to local privilege escalation. Regexes to detect the Perl, Python, and Ruby interpreters are not anchored, allowing a local user to escalate privileges when needrestart tries to detect if interpreters are using old source files.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | released | 3.1-1ubuntu0.1 |
| devel | not-affected | 3.6-1 |
| esm-apps/bionic | released | 3.1-1ubuntu0.1 |
| esm-apps/focal | released | 3.4-6ubuntu0.1 |
| esm-apps/xenial | needs-triage | |
| focal | released | 3.4-6ubuntu0.1 |
| impish | released | 3.5-4ubuntu2.1 |
| jammy | released | 3.5-5ubuntu2.1 |
| kinetic | not-affected | 3.6-1 |
| lunar | not-affected | 3.6-1 |
Показывать по
EPSS
4.6 Medium
CVSS2
7.8 High
CVSS3
Связанные уязвимости
needrestart 0.8 through 3.5 before 3.6 is prone to local privilege escalation. Regexes to detect the Perl, Python, and Ruby interpreters are not anchored, allowing a local user to escalate privileges when needrestart tries to detect if interpreters are using old source files.
needrestart 0.8 through 3.5 before 3.6 is prone to local privilege esc ...
needrestart 0.8 through 3.5 before 3.6 is prone to local privilege escalation. Regexes to detect the Perl, Python, and Ruby interpreters are not anchored, allowing a local user to escalate privileges when needrestart tries to detect if interpreters are using old source files.
EPSS
4.6 Medium
CVSS2
7.8 High
CVSS3