home.social
Sign in Create account

#pack2theroot — Public Fediverse posts

Live and recent posts from across the Fediverse tagged #pack2theroot, aggregated by home.social.

  1. Hackread.com @Hackread ·

    📢⚠️ exposes a 12-year-old flaw in Linux’s PackageKit, letting unprivileged users gain root access in seconds. Affects major distros, patch now

    Read: hackread.com/pack2theroot-linu

    #pack2theroot #linux #cybersecurity #vulnerability #packagekit
  2. Hackread.com @[email protected] ·

    📢⚠️ #Pack2TheRoot exposes a 12-year-old flaw in Linux’s PackageKit, letting unprivileged users gain root access in seconds. Affects major distros, patch now

    Read: hackread.com/pack2theroot-linu

    #Linux #CyberSecurity #Vulnerability #PackageKit

    #pack2theroot #linux #cybersecurity #vulnerability #packagekit
  3. Hackread.com @[email protected] ·

    📢⚠️ #Pack2TheRoot exposes a 12-year-old flaw in Linux’s PackageKit, letting unprivileged users gain root access in seconds. Affects major distros, patch now

    Read: hackread.com/pack2theroot-linu

    #Linux #CyberSecurity #Vulnerability #PackageKit

    #pack2theroot #linux #cybersecurity #vulnerability #packagekit
  4. Hackread.com @[email protected] ·

    📢⚠️ #Pack2TheRoot exposes a 12-year-old flaw in Linux’s PackageKit, letting unprivileged users gain root access in seconds. Affects major distros, patch now

    Read: hackread.com/pack2theroot-linu

    #Linux #CyberSecurity #Vulnerability #PackageKit

    #packagekit #vulnerability #cybersecurity #linux #pack2theroot
  5. Hackread.com @[email protected] ·

    📢⚠️ #Pack2TheRoot exposes a 12-year-old flaw in Linux’s PackageKit, letting unprivileged users gain root access in seconds. Affects major distros, patch now

    Read: hackread.com/pack2theroot-linu

    #Linux #CyberSecurity #Vulnerability #PackageKit

    #pack2theroot #linux #cybersecurity #vulnerability #packagekit
  6. Scripter :verified_flashing: @[email protected] ·

    „Pack2TheRoot“: Sicherheitslücke betrifft mehrere Linux-Distributionen | heise online
    heise.de/-11272897 #Linux #Sicherheitslücke #Pack2TheRoot #Rechteausweitung

    #linux #sicherheitslucke #pack2theroot #rechteausweitung
  7. Scripter :verified_flashing: @[email protected] ·

    „Pack2TheRoot“: Sicherheitslücke betrifft mehrere Linux-Distributionen | heise online
    heise.de/-11272897 #Linux #Sicherheitslücke #Pack2TheRoot #Rechteausweitung

    #linux #sicherheitslucke #pack2theroot #rechteausweitung
  8. Scripter :verified_flashing: @[email protected] ·

    „Pack2TheRoot“: Sicherheitslücke betrifft mehrere Linux-Distributionen | heise online
    heise.de/-11272897 #Linux #Sicherheitslücke #Pack2TheRoot #Rechteausweitung

    #linux #sicherheitslucke #pack2theroot #rechteausweitung
  9. Scripter :verified_flashing: @[email protected] ·

    „Pack2TheRoot“: Sicherheitslücke betrifft mehrere Linux-Distributionen | heise online
    heise.de/-11272897 #Linux #Sicherheitslücke #Pack2TheRoot #Rechteausweitung

    #rechteausweitung #pack2theroot #sicherheitslucke #linux
  10. Scripter :verified_flashing: @[email protected] ·

    „Pack2TheRoot“: Sicherheitslücke betrifft mehrere Linux-Distributionen | heise online
    heise.de/-11272897 #Linux #Sicherheitslücke #Pack2TheRoot #Rechteausweitung

    #linux #sicherheitslucke #pack2theroot #rechteausweitung
  11. [email protected] @[email protected] ·

    #Pack2TheRoot “: #Sicherheitslücke betrifft mehrere #Linux-Distributionen.

    Das #Telekom- #Sicherheitsteam hat die Sicherheitslücke „Pack2TheRoot“ entdeckt, die #Rechteausweitung in mehreren #Distributionen ermöglicht.

    Das meldet die Telekom auf ihren Sicherheitsseiten. #PackageKit ist ein #Abstraktions_Layer für #D_Bus zum eigentlich sicheren Verwalten von Paketen für beliebige #Distributionen und #Architekturen...

    heise.de/news/Pack2TheRoot-Sic

    #pack2theroot #sicherheitslucke #linux #telekom #sicherheitsteam #rechteausweitung
  12. [email protected] @[email protected] ·

    #Pack2TheRoot “: #Sicherheitslücke betrifft mehrere #Linux-Distributionen.

    Das #Telekom- #Sicherheitsteam hat die Sicherheitslücke „Pack2TheRoot“ entdeckt, die #Rechteausweitung in mehreren #Distributionen ermöglicht.

    Das meldet die Telekom auf ihren Sicherheitsseiten. #PackageKit ist ein #Abstraktions_Layer für #D_Bus zum eigentlich sicheren Verwalten von Paketen für beliebige #Distributionen und #Architekturen...

    heise.de/news/Pack2TheRoot-Sic

    #pack2theroot #sicherheitslucke #linux #telekom #sicherheitsteam #rechteausweitung
  13. [email protected] @[email protected] ·

    #Pack2TheRoot “: #Sicherheitslücke betrifft mehrere #Linux-Distributionen.

    Das #Telekom- #Sicherheitsteam hat die Sicherheitslücke „Pack2TheRoot“ entdeckt, die #Rechteausweitung in mehreren #Distributionen ermöglicht.

    Das meldet die Telekom auf ihren Sicherheitsseiten. #PackageKit ist ein #Abstraktions_Layer für #D_Bus zum eigentlich sicheren Verwalten von Paketen für beliebige #Distributionen und #Architekturen...

    heise.de/news/Pack2TheRoot-Sic

    #pack2theroot #sicherheitslucke #linux #telekom #sicherheitsteam #rechteausweitung
  14. [email protected] @[email protected] ·

    #Pack2TheRoot “: #Sicherheitslücke betrifft mehrere #Linux-Distributionen.

    Das #Telekom- #Sicherheitsteam hat die Sicherheitslücke „Pack2TheRoot“ entdeckt, die #Rechteausweitung in mehreren #Distributionen ermöglicht.

    Das meldet die Telekom auf ihren Sicherheitsseiten. #PackageKit ist ein #Abstraktions_Layer für #D_Bus zum eigentlich sicheren Verwalten von Paketen für beliebige #Distributionen und #Architekturen...

    heise.de/news/Pack2TheRoot-Sic

    #architekturen #d_bus #abstraktions_layer #packagekit #distributionen #rechteausweitung
  15. [email protected] @[email protected] ·

    #Pack2TheRoot “: #Sicherheitslücke betrifft mehrere #Linux-Distributionen.

    Das #Telekom- #Sicherheitsteam hat die Sicherheitslücke „Pack2TheRoot“ entdeckt, die #Rechteausweitung in mehreren #Distributionen ermöglicht.

    Das meldet die Telekom auf ihren Sicherheitsseiten. #PackageKit ist ein #Abstraktions_Layer für #D_Bus zum eigentlich sicheren Verwalten von Paketen für beliebige #Distributionen und #Architekturen...

    heise.de/news/Pack2TheRoot-Sic

    #pack2theroot #sicherheitslucke #linux #telekom #sicherheitsteam #rechteausweitung
  16. :awesome:🐦‍🔥nemo™🐦‍⬛ 🇺🇦🍉 @[email protected] ·

    ⚠️🔒 "Pack2TheRoot" erlaubt laut Telekom‑Security in PackageKit eine Privilegien‑Escalation (TOCTOU, CVE‑2026‑41651, CVSS 8.8). Mehrere Standard‑Distros betroffen — Update auf PackageKit ≥1.3.5 und zeitnahe System‑Patches empfohlen. heise.de/news/Pack2TheRoot-Sic #Pack2TheRoot #Linux #Security #PackageKit 🐧

    #packagekit #security #linux #pack2theroot
  17. :awesome:🐦‍🔥nemo™🐦‍⬛ 🇺🇦🍉 @[email protected] ·

    ⚠️🔒 "Pack2TheRoot" erlaubt laut Telekom‑Security in PackageKit eine Privilegien‑Escalation (TOCTOU, CVE‑2026‑41651, CVSS 8.8). Mehrere Standard‑Distros betroffen — Update auf PackageKit ≥1.3.5 und zeitnahe System‑Patches empfohlen. heise.de/news/Pack2TheRoot-Sic #Pack2TheRoot #Linux #Security #PackageKit 🐧

    #packagekit #security #linux #pack2theroot
  18. :awesome:🐦‍🔥nemo™🐦‍⬛ 🇺🇦🍉 @[email protected] ·

    ⚠️🔒 "Pack2TheRoot" erlaubt laut Telekom‑Security in PackageKit eine Privilegien‑Escalation (TOCTOU, CVE‑2026‑41651, CVSS 8.8). Mehrere Standard‑Distros betroffen — Update auf PackageKit ≥1.3.5 und zeitnahe System‑Patches empfohlen. heise.de/news/Pack2TheRoot-Sic #Pack2TheRoot #Linux #Security #PackageKit 🐧

    #packagekit #security #linux #pack2theroot
  19. :awesome:🐦‍🔥nemo™🐦‍⬛ 🇺🇦🍉 @nemo ·

    ⚠️🔒 "Pack2TheRoot" erlaubt laut Telekom‑Security in PackageKit eine Privilegien‑Escalation (TOCTOU, CVE‑2026‑41651, CVSS 8.8). Mehrere Standard‑Distros betroffen — Update auf PackageKit ≥1.3.5 und zeitnahe System‑Patches empfohlen. heise.de/news/Pack2TheRoot-Sic 🐧

    #packagekit #security #linux #pack2theroot
  20. :awesome:🐦‍🔥nemo™🐦‍⬛ 🇺🇦🍉 @[email protected] ·

    ⚠️🔒 "Pack2TheRoot" erlaubt laut Telekom‑Security in PackageKit eine Privilegien‑Escalation (TOCTOU, CVE‑2026‑41651, CVSS 8.8). Mehrere Standard‑Distros betroffen — Update auf PackageKit ≥1.3.5 und zeitnahe System‑Patches empfohlen. heise.de/news/Pack2TheRoot-Sic #Pack2TheRoot #Linux #Security #PackageKit 🐧

    #packagekit #security #linux #pack2theroot
  21. Rotkäppchen @[email protected] ·

    Na gut dass Nix kein #PackageKit unterstützt…
    (edit: Nix, nicht NixOS)

    github.security.telekom.com/20

    #security #cybersecurity #securityadvisory #pack2theroot

    #packagekit #security #cybersecurity #securityadvisory #pack2theroot
  22. Rotkäppchen @[email protected] ·

    Na gut dass NixOS kein #PackageKit unterstützt…

    github.security.telekom.com/20

    #security #cybersecurity #securityadvisory #pack2theroot

    #packagekit #security #cybersecurity #securityadvisory #pack2theroot
  23. Rotkäppchen @[email protected] ·

    Na gut dass NixOS kein #PackageKit unterstützt…

    github.security.telekom.com/20

    #security #cybersecurity #securityadvisory #pack2theroot

    #packagekit #security #cybersecurity #securityadvisory #pack2theroot
  24. Rotkäppchen @[email protected] ·

    Na gut dass Nix kein #PackageKit unterstützt…
    (edit: Nix, nicht NixOS)

    github.security.telekom.com/20

    #security #cybersecurity #securityadvisory #pack2theroot

    #pack2theroot #securityadvisory #cybersecurity #security #packagekit
  25. Rotkäppchen @[email protected] ·

    Na gut dass Nix kein #PackageKit unterstützt…
    (edit: Nix, nicht NixOS)

    github.security.telekom.com/20

    #security #cybersecurity #securityadvisory #pack2theroot

    #packagekit #security #cybersecurity #securityadvisory #pack2theroot
  26. Daniel Marsh @[email protected] ·

    Discover the Pack2TheRoot flaw, a high-severity vulnerability (CVE-2026-41651) in PackageKit that has granted local users root access on Linux systems for nearly 12 years. This incident, where AI helped uncover the bug, forces a critical reevaluation of how we audit foundational open-source components. Learn which distributions are affected and why immediate patching to PackageKit 1.3.5 is…

    tpp.blog/1ybpbp2

    #cybersecurity #pack2theroot #packagekit

    🤖 This post was AI-generated.

    #cybersecurity #pack2theroot #packagekit
  27. ZEN SecDB @[email protected] ·

    🚨 CVE-2026-41651 (Pack2TheRoot)

    PackageKit vulnerable to TOCTOU Race on Transaction Flags leads to arbitrary package installation as root

    PackageKit is a a D-Bus abstraction layer that allows the user to manage packages in a secure way using a cross-distro, cross-architecture API. PackageKit between and including versions 1.0.2 and 1.3.4 is vulnerable to a time-of-check time-of-use (TOCTOU) race condition on transaction flags that allows unprivileged users to install packages as root and thus leads to a local privilege escalation. This is patched in version 1.3.5.

    ℹ️ Additional info on ZEN SecDB secdb.nttzen.cloud/cve/detail/

    #nttdata #zen #secdb #infosec
    #pack2theroot #cve2026411651 #packagekit #toctou

    #nttdata #zen #secdb #infosec #pack2theroot #cve2026411651
  28. ZEN SecDB @[email protected] ·

    🚨 CVE-2026-41651 (Pack2TheRoot)

    PackageKit vulnerable to TOCTOU Race on Transaction Flags leads to arbitrary package installation as root

    PackageKit is a a D-Bus abstraction layer that allows the user to manage packages in a secure way using a cross-distro, cross-architecture API. PackageKit between and including versions 1.0.2 and 1.3.4 is vulnerable to a time-of-check time-of-use (TOCTOU) race condition on transaction flags that allows unprivileged users to install packages as root and thus leads to a local privilege escalation. This is patched in version 1.3.5.

    ℹ️ Additional info on ZEN SecDB secdb.nttzen.cloud/cve/detail/

    #nttdata #zen #secdb #infosec
    #pack2theroot #cve2026411651 #packagekit #toctou

    #nttdata #zen #secdb #infosec #pack2theroot #cve2026411651
  29. ZEN SecDB @[email protected] ·

    🚨 CVE-2026-41651 (Pack2TheRoot)

    PackageKit vulnerable to TOCTOU Race on Transaction Flags leads to arbitrary package installation as root

    PackageKit is a a D-Bus abstraction layer that allows the user to manage packages in a secure way using a cross-distro, cross-architecture API. PackageKit between and including versions 1.0.2 and 1.3.4 is vulnerable to a time-of-check time-of-use (TOCTOU) race condition on transaction flags that allows unprivileged users to install packages as root and thus leads to a local privilege escalation. This is patched in version 1.3.5.

    ℹ️ Additional info on ZEN SecDB secdb.nttzen.cloud/cve/detail/

    #nttdata #zen #secdb #infosec
    #pack2theroot #cve2026411651 #packagekit #toctou

    #toctou #packagekit #cve2026411651 #pack2theroot #infosec #secdb
  30. Matthias Klumpp @[email protected] ·

    Forgot your root password? No problem! With #PackageKit <= 1.3.4 you can do all the fun root action on any Linux system you have local access to, no privileges required!

    Don't like that? Then PLEASE UPDATE your system ASAP to PackageKit >= 1.3.5 or any fixed distro package. Fixes for this vulnerability should already be available everywhere since today.

    You can read more about CVE-2026-41651 on the security researcher's blog:
    github.security.telekom.com/20

    #pack2theroot #osssecurity

    #packagekit #pack2theroot #osssecurity
  31. Matthias Klumpp @[email protected] ·

    Forgot your root password? No problem! With #PackageKit <= 1.3.4 you can do all the fun root action on any Linux system you have local access to, no privileges required!

    Don't like that? Then PLEASE UPDATE your system ASAP to PackageKit >= 1.3.5 or any fixed distro package. Fixes for this vulnerability should already be available everywhere since today.

    You can read more about CVE-2026-41651 on the security researcher's blog:
    github.security.telekom.com/20

    #pack2theroot #osssecurity

    #packagekit #pack2theroot #osssecurity
  32. Matthias Klumpp @[email protected] ·

    Forgot your root password? No problem! With #PackageKit <= 1.3.4 you can do all the fun root action on any Linux system you have local access to, no privileges required!

    Don't like that? Then PLEASE UPDATE your system ASAP to PackageKit >= 1.3.5 or any fixed distro package. Fixes for this vulnerability should already be available everywhere since today.

    You can read more about CVE-2026-41651 on the security researcher's blog:
    github.security.telekom.com/20

    #pack2theroot #osssecurity

    #packagekit #pack2theroot #osssecurity
  33. Matthias Klumpp @[email protected] ·

    Forgot your root password? No problem! With #PackageKit <= 1.3.4 you can do all the fun root action on any Linux system you have local access to, no privileges required!

    Don't like that? Then PLEASE UPDATE your system ASAP to PackageKit >= 1.3.5 or any fixed distro package. Fixes for this vulnerability should already be available everywhere since today.

    You can read more about CVE-2026-41651 on the security researcher's blog:
    github.security.telekom.com/20

    #pack2theroot #osssecurity

    #osssecurity #pack2theroot #packagekit
  34. Matthias Klumpp @[email protected] ·

    Forgot your root password? No problem! With #PackageKit <= 1.3.4 you can do all the fun root action on any Linux system you have local access to, no privileges required!

    Don't like that? Then PLEASE UPDATE your system ASAP to PackageKit >= 1.3.5 or any fixed distro package. Fixes for this vulnerability should already be available everywhere since today.

    You can read more about CVE-2026-41651 on the security researcher's blog:
    github.security.telekom.com/20

    #pack2theroot #osssecurity

    #packagekit #pack2theroot #osssecurity