UbuntuUpdates.org

Package "needrestart"

Name: needrestart

Description:

check which daemons need to be restarted after library upgrades
Latest version: 3.6-8ubuntu4.4
Release: oracular (24.10)
Level: updates
Repository: main
Homepage: https://github.com/liske/needrestart

Links

All versions of this package
Bug fixes

List of files in package
Repository home page

Download "needrestart"

All arch deb package
APT INSTALL

Other versions of "needrestart" in Oracular

Repository Area Version
base main 3.6-8ubuntu4
security main 3.6-8ubuntu4.4

Changelog

Version: 3.6-8ubuntu4.4 2024-12-05 21:06:47 UTC

  needrestart (3.6-8ubuntu4.4) oracular-security; urgency=medium

  * SECURITY REGRESSION: false positives for killing processes in LXC
    (LP: #2089193)
    - debian/patches/lp2091096/0021-fix-lxc-fp.patch: use the value of exe
      to check for obsolete processes when exec is undefined

 -- Sudhakar Verma <email address hidden> Thu, 05 Dec 2024 17:12:44 +0530
Source diff to previous version
2089193 containerd false positive in 3.6-7ubuntu4.3

Version: 3.6-8ubuntu4.3 2024-11-26 12:07:05 UTC

  needrestart (3.6-8ubuntu4.3) oracular-security; urgency=medium

  * SECURITY REGRESSION: false positives for killing processes (LP: #2089193)
    - debian/patches/lp2089193/0020-fix-chroot-mountns-fp.patch: ignore check
      for obsolete processes in chrooted or containerized processes

 -- Sudhakar Verma <email address hidden> Tue, 26 Nov 2024 10:37:22 +0530
Source diff to previous version
2089193 containerd false positive in 3.6-7ubuntu4.3

Version: 3.6-8ubuntu4.2 2024-11-19 20:06:50 UTC

  needrestart (3.6-8ubuntu4.2) oracular-security; urgency=medium

  * SECURITY UPDATE: incorrect usage of PYTHONPATH environment variable
    - debian/patches/CVE-2024-48990.patch: chdir to a clean directory
      to avoid loading arbirary objects, sanitize PYTHONPATH before
      spawning a new python interpreter
    - CVE-2024-48990
  * SECURITY UPDATE: race condition for checking path to python
    - debian/patches/CVE-2024-48991.patch: sync path for both check
      and usage for python interpreter
    - CVE-2024-48991
  * SECURITY UPDATE: incorrect usage of RUBYLIB environment variable
    - debian/patches/CVE-2024-48992.patch: chdir to a clean directory
      to avoid loading arbirary objects, sanitize RUBYLIB before
      spawning a new ruby interpreter
    - CVE-2024-48992
  * SECURITY UPDATE: incorrect usage of Perl ScanDeps
    - debian/patches/CVE-2024-11003.patch: remove usage of ScanDeps
      to avoid parsing arbitrary code
    - CVE-2024-11003

 -- Sudhakar Verma <email address hidden> Wed, 13 Nov 2024 17:03:15 +0530
CVE-2024-48990 Qualys discovered that needrestart, before version 3.8, allows local a ...
CVE-2024-48991 Qualys discovered that needrestart, before version 3.8, allows local a ...
CVE-2024-48992 Qualys discovered that needrestart, before version 3.8, allows local a ...
CVE-2024-11003 Qualys discovered that needrestart, before version 3.8, passes unsanit ...


About   -   Send Feedback to @ubuntu_updates