Multiple decade-old security vulnerabilities have been disclosed in the needrestart package installed by default in Ubuntu Server (since version 21.04) that could allow a local attacker to gain root privileges without requiring user interaction.
The Qualys Threat Research Unit (TRU), which identified and reported the flaws early last month, said they are trivial to exploit, necessitating that

- November 20, 2024
- by
- Cyber News
- Less than a minute
- 65 Views
Related Post
- by Francis Schmuff
- April 8, 2025
Cryptocurrency Miner and Clipper Malware Spread via SourceForge
Threat actors have been observed distributing malicious payloads such as cryptocurrency miner and clipper malware via SourceForge, a popular software
- by Francis Schmuff
- April 8, 2025
Arguing Against CALEA
At a Congressional hearing earlier this week, Matt Blaze made the point that CALEA, the 1994 law that forces telecoms
- by Francis Schmuff
- April 8, 2025
Fortinet Urges FortiSwitch Upgrades to Patch Critical Admin
Fortinet has released security updates to address a critical security flaw impacting FortiSwitch that could permit an attacker to make
- by Francis Schmuff
- April 8, 2025
Amazon EC2 SSM Agent Flaw Patched After Privilege
Cybersecurity researchers have disclosed details of a now-patched security flaw in the Amazon EC2 Simple Systems Manager (SSM) Agent that,
- by Francis Schmuff
- April 8, 2025
Cryptocurrency Miner and Clipper Malware Spread via SourceForge
Threat actors have been observed distributing malicious payloads such as cryptocurrency miner and clipper malware via SourceForge, a popular software
- by Francis Schmuff
- April 8, 2025
Arguing Against CALEA
At a Congressional hearing earlier this week, Matt Blaze made the point that CALEA, the 1994 law that forces telecoms
- by Francis Schmuff
- April 8, 2025
Fortinet Urges FortiSwitch Upgrades to Patch Critical Admin
Fortinet has released security updates to address a critical security flaw impacting FortiSwitch that could permit an attacker to make
- by Francis Schmuff
- April 8, 2025
Amazon EC2 SSM Agent Flaw Patched After Privilege
Cybersecurity researchers have disclosed details of a now-patched security flaw in the Amazon EC2 Simple Systems Manager (SSM) Agent that,