12-year-old Pack2TheRoot bug lets Linux users gain root privileges
‘Pack2TheRoot’ flaw lets local Linux users gain root via PackageKit. CVE-2026-41651 (8.8) has existed for nearly 12 years. The Pack2TheRoot flaw, tracked as CVE-2026-41651, lets unprivileged users install or remove system packages without authorization, potentially gaining full root access. The vuln
ORIGINAL SOURCE →via Security Affairs
ADVERTISEMENT
⚡ STAY AHEAD
Events like this, convergence-verified across 689 sources, land in your inbox every Sunday. Free.
GET THE SUNDAY BRIEFING →RELATED · cyber
- [CYBER] potential crucial vulnerability?
- [CYBER] Firestarter malware survives Cisco firewall updates, security patches
- [CYBER] CVE-2026-42171 - NSIS Privilege Escalation Vulnerability
- [CYBER] CVE-2026-41488 - angchain-openai: Image token counting SSRF protection can be bypassed via DNS rebinding
- [CYBER] CVE-2026-41481 - LangChain: HTMLHeaderTextSplitter.split_text_from_url SSRF Redirect Bypass
- [CYBER] CVE-2026-41478 - Saltcorn: SQL Injection via Unparameterized Sync Endpoints (maxLoadedId)