<ul><li>Decade-old flaws in the needrestart package in Ubuntu Server could allow local attackers to gain root privileges without user interaction.</li><li>The Qualys Threat Research Unit (TRU) discovered five Local Privilege Escalation (LPE) decade-old security vulnerabilities in the needrestart package that could allow a local attacker to gain root privileges.</li><li>The needrestart package in Ubuntu is a utility designed to ensure system stability after software updates.</li><li>The vulnerabilities have been tracked as CVE-2024-48990, CVE-2024-48991, CVE-2024-48992, CVE-2024-10224, and CVE-2024-11003.</li></ul>

Decade-old local privilege escalation bugs impacts Ubuntu needrestart package

Discover more