rootio-linux: Unauthenticated Command Execution via Malicious Packages

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

rootio-linux: Unauthenticated Command Execution via Malicious Packages

ROOT-OS-DEBIAN-11-CVE-2022-49109

Summary

The rootio-linux package on Debian 11 has been updated to prevent attackers from installing malicious software without a password. This means that if you're using this package, you should update to the latest version to stay secure. You can do this by running a package update or checking with your system administrator to see if any updates are available.

What to do

Update rootio-linux to version 5.10.247-1.root.io.42.

Affected software

Vendor	Product	Affected versions	Fix available
–	rootio-linux	<= 5.10.247-1.root.io.42	5.10.247-1.root.io.42

Original title

CVE-2022-49109 in rootio-linux - Patched by Root

Original description

Root has patched CVE-2022-49109 in the rootio-linux package for Root:Debian:11. Multiple fixed versions available.

Published: 6 Mar 2026 · Updated: 6 Mar 2026 · First seen: 6 Mar 2026