All errata/sisyphus/ALT-PU-2025-1284-18
ALT-PU-2025-1284-18

Package update packagekit in branch sisyphus

Version1.3.0-alt1
Task#369580
Published2026-02-04
Max severityLOW
Severity:

Closed issues (2)

BDU:2026-00324
LOW3.3

Уязвимость функции Idle пакетного менеджера PackageKit, позволяющая нарушителю оказать воздействие на доступность защищаемой информации

Published: 2026-01-13Modified: 2026-01-27
CVSS 3.xLOW 3.3
CVSS:3.x/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L
CVSS 2.0LOW 1.7
CVSS:2.0/AV:L/AC:L/Au:S/C:N/I:N/A:P
References
CVE-2024-0217
LOW3.3

A use-after-free flaw was found in PackageKitd. In some conditions, the order of cleanup mechanics for a transaction could be impacted. As a result, some memory access could occur on memory regions that were previously freed. Once freed, a memory region can be reused for other allocations and any previously stored data in this memory region is considered lost.

Published: 2024-01-03Modified: 2024-11-21
CVSS 3.xLOW 3.3
CVSS:3.x/CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L
References