PackageKit | 今天abc看了啥🤔现在我也不知道这频道发了啥了,各位慢慢吃瓜,将就着看联系我请去 @abc1763613206友链儿@cyberElaina@rvalue_daily@billchenlahttps://broadcastchannel-ajj.pages.dev🔴 PackageKit 本地提权漏洞;请尽快升级至 1.3.5https://broadcastchannel-ajj.pages.dev/posts/7231https://broadcastchannel-ajj.pages.dev/posts/7231Wed, 22 Apr 2026 14:07:25 GMT<i><b>🔴</b></i> <mark>PackageKit</mark> 本地提权漏洞;请尽快升级至 1.3.5。<br /><br />- 修复版本 1.3.5 在约两小时前发布。<br />- <mark>PackageKit</mark> 是许多包管理器的后端,在 Ubuntu、Debian、Fedora 等发行版上被广泛应用;最早受影响版本 1.0.2 版本在 12 年前发布。<br />- 鉴于以上情况,目前大部分正在运行的 Linux 系统都受此漏洞影响,建议系统管理员在更新版本于发行版发布后及时更新。<br /><br />CVSS: 8.8/10<br />Affect: [1.0.2, 1.3.4]<br /><br />- <a href="https://github.com/PackageKit/PackageKit/security/advisories/GHSA-f55j-vvr9-69xv" target="_blank">GHSA-f55j-vvr9-69xv</a><br />- <a href="https://github.security.telekom.com/2026/04/pack2theroot-linux-local-privilege-escalation.html" target="_blank">github.security.telekom.com/~</a><br /><br />linksrc: <a href="https://t.me/bupt_moe/2712" target="_blank">https://t.me/bupt_moe/2712</a><br /><br /><a href="/search/%23Security">#Security</a> <a href="/search/%23PackageKit">#PackageKit</a><a href="https://github.com/PackageKit/PackageKit/security/advisories/GHSA-f55j-vvr9-69xv" target="_blank"> <div>GitHub</div> <img class="link_preview_image" alt="Race condition vulnerability leads to arbitrary package installation as root" src="/static/https://cdn4.telesco.pe/file/DBdPpLF-5fUUa1loZEwN0Lh3buFqR_pAfhXjhm76NCQ7qflgRFq5PoCsb6MuDfM1kCCSdd3cL4L7IaKYAkVtSj-hCmPFARY_D8D_rvh4LtJ0o8YxriaVF9NjantcwWQdaNk3pkd8pwVHetgI726rpICrESosQZxNyLSXMz0p_jJmSFjAjEvuNSz5UZ8N2MOr1qxMCwoMVmClc_Hfw6c4GLdmOwTcjbIJjQ-p5I9W38avSSnZNOp0OaunH090PNtZ_hyfyY9y-ycimwSvSe3Js4SDd15691BHhotYQkVTIFPAEpFU57YsgpniBdKMl0acGCwErwQNiwTQ2uJBbRQztQ.jpg" loading="lazy" /> <div>Race condition vulnerability leads to arbitrary package installation as root</div> <div>This report explains a vulnerability within <mark>PackageKit</mark>, that allows unprivileged user installing packages as root and thus leads to a local privilege escalation. <br /> <br />All <mark>PackageKit</mark> versions between ...</div> </a>