vulnerability

Ubuntu: USN-5426-1 (CVE-2022-30688): needrestart vulnerability

Try Surface Command

Back to search

Severity

CVSS

(AV:L/AC:L/Au:N/C:P/I:P/A:P)

Published

May 17, 2022

Added

May 18, 2022

Modified

Mar 27, 2026

Description

needrestart 0.8 through 3.5 before 3.6 is prone to local privilege escalation. Regexes to detect the Perl, Python, and Ruby interpreters are not anchored, allowing a local user to escalate privileges when needrestart tries to detect if interpreters are using old source files.

Solution

ubuntu-upgrade-needrestart

References

CVE-2022-30688
https://attackerkb.com/topics/CVE-2022-30688
DEBIAN-DSA-5137
EUVD-EUVD-2022-52519
NVD-CVE-2022-30688
UBUNTU-USN-5426-1
https://euvd.enisa.europa.eu/vulnerability/EUVD-2022-52519

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report