Home / mailings [USN-8195-2] PackageKit vulnerability
Posted on 27 April 2026
Ubuntu Security==========================================================================Ubuntu Security Notice USN-8195-2
April 27, 2026
packagekit vulnerability
==========================================================================
A security issue affects these releases of Ubuntu and its derivatives:
Summary:
PackageKit could be made to install packages as the administrator.
Software Description:
Details:
USN-8195-1 fixed a vulnerability in PackageKit. This update provides the
corresponding update to Ubuntu 26.04 LTS.
Original advisory details:
It was discovered that PackageKit incorrectly handled certain
transactions. A local attacker could use this issue to install arbitrary
packages as root, possibly resulting in privilege escalation.
Update instructions:
The problem can be corrected by updating your system to the following
package versions:
After a standard system update you need to reboot your computer to make
all the necessary changes.
References:
https://ubuntu.com/security/notices/USN-8195-2
https://ubuntu.com/security/notices/USN-8195-1
https://launchpad.net/bugs/2149908
--===============6487394070306501279==Content-Type: application/pgp-signature; name="signature.asc"
Content-Description: OpenPGP digital signature
