CVE-2022-30688
Publication date 17 May 2022
Last updated 26 August 2025
Ubuntu priority
Description
needrestart 0.8 through 3.5 before 3.6 is prone to local privilege escalation. Regexes to detect the Perl, Python, and Ruby interpreters are not anchored, allowing a local user to escalate privileges when needrestart tries to detect if interpreters are using old source files.
Status
| Package | Ubuntu Release | Status |
|---|---|---|
| needrestart | 25.10 questing |
Not affected
|
| 25.04 plucky |
Not affected
|
|
| 24.04 LTS noble |
Not affected
|
|
| 22.04 LTS jammy |
Fixed 3.5-5ubuntu2.1
|
|
| 20.04 LTS focal |
Fixed 3.4-6ubuntu0.1
|
|
| 18.04 LTS bionic |
Fixed 3.1-1ubuntu0.1
|
|
| 16.04 LTS xenial |
Needs evaluation
|
Severity score breakdown
| Parameter | Value |
|---|---|
| Base score |
7.8 · High
|
| Attack vector | Local |
| Attack complexity | Low |
| Privileges required | Low |
| User interaction | None |
| Scope | Unchanged |
| Confidentiality | High |
| Integrity impact | High |
| Availability impact | High |
| Vector | CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
References
Related Ubuntu Security Notices (USN)
- USN-5426-1
- needrestart vulnerability
- 17 May 2022