[Bug 2089193] Re: containerd false positive in 3.6-7ubuntu4.3
Launchpad Bug Tracker
2089193 at bugs.launchpad.net
Tue Nov 26 07:54:00 UTC 2024
This bug was fixed in the package needrestart - 3.6-8ubuntu4.3
---------------
needrestart (3.6-8ubuntu4.3) oracular-security; urgency=medium
* SECURITY REGRESSION: false positives for killing processes (LP: #2089193)
- debian/patches/lp2089193/0020-fix-chroot-mountns-fp.patch: ignore check
for obsolete processes in chrooted or containerized processes
-- Sudhakar Verma <sudhakar.verma at canonical.com> Tue, 26 Nov 2024
10:37:22 +0530
** Changed in: needrestart (Ubuntu)
Status: New => Fix Released
** Changed in: needrestart (Ubuntu)
Status: New => Fix Released
--
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to needrestart in Ubuntu.
https://bugs.launchpad.net/bugs/2089193
Title:
containerd false positive in 3.6-7ubuntu4.3
Status in needrestart package in Ubuntu:
Fix Released
Bug description:
`3.6-7ubuntu4.3` causes false positives with containerd (works fine
with `3.6-7ubuntu4.1`)
# needrestart -rl -p -v
[main] eval /etc/needrestart/needrestart.conf
[main] needrestart v3.6
[main] running in root mode
[main] systemd detected
[main] vm detected
[Core] #813 is a NeedRestart::Interp::Python
[Python] #813: source=/usr/bin/networkd-dispatcher
[Core] #860 is a NeedRestart::Interp::Python
[Python] #860: source=/usr/share/unattended-upgrades/unattended-upgrade-shutdown
[main] #1789 uses obsolete binary /pause
[main] #1789 is a child of #1571
[main] #1800 uses obsolete binary /pause
[main] #1800 is a child of #1572
[main] #1801 uses obsolete binary /pause
[main] #1801 is a child of #1567
[main] #1815 uses obsolete binary /pause
[main] #1815 is a child of #1559
[main] #1816 uses obsolete binary /pause
[main] #1816 is a child of #1564
[main] #1819 uses obsolete binary /pause
[main] #1819 is a child of #1643
[main] #1825 uses obsolete binary /pause
[main] #1825 is a child of #1732
[main] #1842 uses obsolete binary /pause
[main] #1842 is a child of #1731
[main] #1997 uses obsolete binary /usr/bin/cadvisor
[main] #1997 is a child of #1567
[main] #2011 uses obsolete binary /csi-node-driver-registrar
[main] #2011 is a child of #1643
[main] #2077 uses obsolete binary /bin/node_exporter
[main] #2077 is a child of #1572
[main] #2078 uses obsolete binary /node-problem-detector
[main] #2078 is a child of #1732
[main] #2391 uses obsolete binary /usr/local/bin/kube-router
[main] #2391 is a child of #1559
[main] #2779 uses obsolete binary /usr/local/bin/crowdsec
[main] #2779 is a child of #1731
[main] #3905 uses obsolete binary /pause
[main] #3905 is a child of #3872
[main] #3970 uses obsolete binary /pause
[main] #3970 is a child of #3940
[main] #4194 uses obsolete binary /speaker
[main] #4194 is a child of #1564
[main] #4371 uses obsolete binary /usr/bin/ceph-exporter
[main] #4371 is a child of #3940
[main] #4611 uses obsolete binary /pause
[main] #4611 is a child of #4592
[main] #5337 uses obsolete binary /usr/local/bin/cephcsi
[main] #5337 is a child of #1643
[main] #5377 uses obsolete binary /usr/bin/python3.9
[main] #5377 is a child of #4592
[main] #5738 uses obsolete binary /usr/bin/ceph-osd
[main] #5738 is a child of #3872
[main] #6427 uses obsolete binary /fluent-bit/bin/fluent-bit
[main] #6427 is a child of #1571
[main] #1559 exe => /usr/bin/containerd-shim-runc-v2
[main] #1559 is containerd.service
[main] #1564 exe => /usr/bin/containerd-shim-runc-v2
[main] #1564 is containerd.service
[main] #1567 exe => /usr/bin/containerd-shim-runc-v2
[main] #1567 is containerd.service
[main] #1571 exe => /usr/bin/containerd-shim-runc-v2
[main] #1571 is containerd.service
[main] #1572 exe => /usr/bin/containerd-shim-runc-v2
[main] #1572 is containerd.service
[main] #1643 exe => /usr/bin/containerd-shim-runc-v2
[main] #1643 is containerd.service
[main] #1731 exe => /usr/bin/containerd-shim-runc-v2
[main] #1731 is containerd.service
[main] #1732 exe => /usr/bin/containerd-shim-runc-v2
[main] #1732 is containerd.service
[main] #3872 exe => /usr/bin/containerd-shim-runc-v2
[main] #3872 is containerd.service
[main] #3940 exe => /usr/bin/containerd-shim-runc-v2
[main] #3940 is containerd.service
[main] #4592 exe => /usr/bin/containerd-shim-runc-v2
[main] #4592 is containerd.service
[main] inside container or vm, skipping microcode checks
[Kernel] Linux: kernel release 6.8.0-49-generic, kernel version #49-Ubuntu SMP PREEMPT_DYNAMIC Mon Nov 4 02:06:24 UTC 2024
[Kernel/Linux] /boot/vmlinuz.old => 6.8.0-48-generic (buildd at lcy02-amd64-010) #48-Ubuntu SMP PREEMPT_DYNAMIC Fri Sep 27 14:04:52 UTC 2024 [6.8.0-48-generic]
[Kernel/Linux] /boot/vmlinuz-6.8.0-49-generic => 6.8.0-49-generic (buildd at lcy02-amd64-028) #49-Ubuntu SMP PREEMPT_DYNAMIC Mon Nov 4 02:06:24 UTC 2024 [6.8.0-49-generic]*
[Kernel/Linux] /boot/vmlinuz-6.8.0-48-generic => 6.8.0-48-generic (buildd at lcy02-amd64-010) #48-Ubuntu SMP PREEMPT_DYNAMIC Fri Sep 27 14:04:52 UTC 2024 [6.8.0-48-generic]
[Kernel/Linux] /boot/vmlinuz => 6.8.0-49-generic (buildd at lcy02-amd64-028) #49-Ubuntu SMP PREEMPT_DYNAMIC Mon Nov 4 02:06:24 UTC 2024 [6.8.0-49-generic]*
[Kernel/Linux] Expected linux version: 6.8.0-49-generic
WARN - Kernel: 6.8.0-49-generic, Services: 1 (!), Containers: none, Sessions: none|Kernel=0;0;;0;2 Services=1;;0;0 Containers=0;;0;0 Sessions=0;0;;0
Services:
- containerd.service
Also reported at https://github.com/liske/needrestart/issues/317
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/needrestart/+bug/2089193/+subscriptions
More information about the foundations-bugs
mailing list