Arch Linux's AUR Sees More Than 400 Packages Compromised With Malware
([Arch Linux] 5 Hours Ago
AUR)
- Reference: 0001640039
- News link: https://www.phoronix.com/news/Arch-Linux-AUR-400-Compromised
- Source link:
The Arch Linux User Repository "AUR" was hit by a large-scale malware campaign this week with more than 400 of these user-supplied packages being compromised.
Since yesterday Arch Linux maintainers have been working to reset/delete all of the malicious content and banning affected accounts. Over 400 packages are believed impacted by this latest malware campaign for Arch Linux's AUR. Again, to be completely clear, this just is affecting AUR packages and not the official Arch Linux packages.
[1]This Arch Linux mailing list thread goes over some of the affected AUR packages and the impact. There is also more information and discussion on this significant AUR event via the [2]CachyOS Forums .
[1] https://lists.archlinux.org/archives/list/aur-general@lists.archlinux.org/thread/FGXPCB3ZVCJIV7FX323SBAX2JHYB7ZS4/
[2] https://discuss.cachyos.org/t/aur-compromised-400-packages-affected-20260611/31040/19
Since yesterday Arch Linux maintainers have been working to reset/delete all of the malicious content and banning affected accounts. Over 400 packages are believed impacted by this latest malware campaign for Arch Linux's AUR. Again, to be completely clear, this just is affecting AUR packages and not the official Arch Linux packages.
[1]This Arch Linux mailing list thread goes over some of the affected AUR packages and the impact. There is also more information and discussion on this significant AUR event via the [2]CachyOS Forums .
[1] https://lists.archlinux.org/archives/list/aur-general@lists.archlinux.org/thread/FGXPCB3ZVCJIV7FX323SBAX2JHYB7ZS4/
[2] https://discuss.cachyos.org/t/aur-compromised-400-packages-affected-20260611/31040/19