Arch Linux Blocks New AUR Registrations Amid Malware Cleanup

Staff Editor 2026-06-15
Arch Linux Blocks New AUR Registrations Amid Malware Cleanup

Arch Linux Blocks New AUR Registrations Amid Malware Cleanup

https://linuxiac.com/arch-linux-blocks-new-aur-registrations-amid-malware-cleanup/

Publish Date: 2026-06-15 12:36:00

Source Domain: linuxiac.com

Arch Linux is dealing with one of the largest security incidents to hit the Arch User Repository in recent memory, as maintainers continue cleaning up a wave of malicious package updates across the community-maintained platform.

Importantly, the AUR remains online, and packages are accessible. However, new account registration is unavailable, with the registration page returning a 503 Service Unavailable error. While not officially announced, this suggests Arch has temporarily blocked an entry point as it works through the cleanup.

The move follows an official Arch Linux warning notice dated June 12 about a “high volume” of malicious package adoptions and updates in the AUR. Maintainers are tracking down malicious commits and trying to prevent more from being pushed while preparing a permanent solution.

Arch also warned users may experience problems with new account creation, package updates, adoptions, and new package creation during the response.

Unfortunately, the incident appears far larger than early reports suggested. Initial public reports pointed to over 400 affected AUR packages, while later community tracking raised the number to more than 1,500. The final count may still change as maintainers continue auditing and removing malicious changes.

The scale of the AUR helps explain why the incident is difficult to contain quickly. According to the repository’s own statistics, the AUR currently lists 107,405 packages, including 13,051 orphan packages. It also shows 273 packages added in the past seven days and 5,575 packages updated over the same period, alongside 141,968 registered users.

The campaign reportedly abused the AUR’s package adoption system, where orphaned packages can be taken over by new maintainers. Malicious updates were pushed to affected packages, sometimes pulling external payloads during build or installation.

For users, the immediate advice remains: review PKGBUILD files and install scripts before…

Source

More Stories

Intel Performance Skills: New Open-Source Project Leveraging AI For Linux Performance Optimizations

Intel Performance Skills: New Open-Source Project Leveraging AI For Linux Performance Optimizations

Staff Editor 2026-06-15
Valve Loosens AMD’s Handheld Grip As SteamOS Gains Intel GPU Support

Valve Loosens AMD’s Handheld Grip As SteamOS Gains Intel GPU Support

Staff Editor 2026-06-15
Russian Spam & Profanities Are Now Plaguing The Arch Linux AUR

Russian Spam & Profanities Are Now Plaguing The Arch Linux AUR

Staff Editor 2026-06-15

Terms and Conditions - Privacy Policy