PT-2026-34331

Name of the Vulnerable Software and Affected Versions PackageKit versions 1.0.2 through 1.3.4 Description PackageKit, a D-Bus abstraction layer for secure package management across distributions, contains a time-of-check time-of-use TOCTOU race condition involving transaction flags. This flaw...

MiracleLinux 7 : PackageKit-1.1.5-2.0.1.el7.AXS7 (AXSA:2018-3051:01)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2018-3051:01 advisory. PackageKit: authentication bypass allows to install signed packages without administrator privileges CVE-2018-1106 Tenable has extracted the preceding...

ROS-20251223-7304

Vulnerability in PackageKit related to memory usage after its release. Exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary code...

Exploit for Improper Input Validation in Apple Macos

Cybersecurity POCs This is a collection of various proof of co...

Advisory ROSA-SA-2025-3100

Software: PackageKit 1.1.12 OS: ROSA Virtualization 2.1 packageevrstring: PackageKit-1.1.12-7.0.1.rv3 CVE-ID: CVE-2024-0217 BDU-ID: None CVE-Crit: LOW CVE-DESC.: A use-after-free vulnerability in PackageKitd allows an attacker to access freed memory and potentially execute arbitrary code...

EUVD-2020-8087

Malware in sbrugna...

EUVD-2018-11753

Malware in sbrugna...

EUVD-2020-8088

Malware in sbrugna...

EUVD-2010-3989

Malware in sbrugna...

EUVD-2011-2500

Malware in sbrugna...

EUVD-2013-1790

Malware in sbrugna...

EUVD-2022-15981

Malicious code in bioql PyPI...

The vulnerability of PackageKit for macOS operating systems, which allows a hacker to trigger a service failure.

The vulnerability of PackageKit for macOS operating systems is related to access control deficiencies. Exploiting this vulnerability can allow an attacker to cause service failures...

The vulnerability of PackageKit in macOS operating systems allows attackers to circumvent security restrictions and compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of PackageKit for macOS operating systems is related to deficiencies in access control. Exploiting this vulnerability allows a malicious actor to bypass security restrictions and compromise the confidentiality, integrity, and accessibility of protected information...

Low: PackageKit

Issue Overview: A use-after-free flaw was found in PackageKitd. In some conditions, the order of cleanup mechanics for a transaction could be impacted. As a result, some memory access could occur on memory regions that were previously freed. Once freed, a memory region can be reused for other...

Amazon Linux 2 : PackageKit (ALAS-2025-2811)

The version of PackageKit installed on the remote host is prior to 1.1.5-2. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2025-2811 advisory. A use-after-free flaw was found in PackageKitd. In some conditions, the order of cleanup mechanics for a transaction could be...

Low: PackageKit

Issue Overview: A use-after-free flaw was found in PackageKitd. In some conditions, the order of cleanup mechanics for a transaction could be impacted. As a result, some memory access could occur on memory regions that were previously freed. Once freed, a memory region can be reused for other...

Linux Distros Unpatched Vulnerability : CVE-2022-0987

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in PackageKit in the way some of the methods exposed by the Transaction interface examines files. This issue allows a local user to measure the...

Linux Distros Unpatched Vulnerability : CVE-2020-16121

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - PackageKit provided detailed error messages to unprivileged callers that exposed information about file presence and mimetype of files that the user would be...

Linux Distros Unpatched Vulnerability : CVE-2011-2515

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - PackageKit 0.6.17 allows installation of unsigned RPM packages as though they were signed which may allow installation of non-trusted packages and execution of...