Alerts This Week
Warning Icon 1 535
Alerts This Week
Warning Icon 1 535

Fedora 44 PIE Vulnerability in Sudo Might Allow Code Execution Risks

fedora
Calendar Grey June 4, 2026
Dist Fedora Esm H88
Critical security fixes for PIE in Fedora 44 address elevated privileges and file issues. Update now to secure your system.
Version 1.4.5 This release contains vulnerability fixes for the following security advisories: GHSA-h842-vjwg-pxxx - Sudo-elevated arbitrary file deletion via extra.pie- installed-...

Summary

PIE (PHP Installer for Extensions).

PIE can install an extension to any installed PHP version.

A list of extensions that support PIE can be found on

https://packagist.org/extensions.

Documentation: /usr/share/doc/pie/docs/usage.md

Update Information:

Version 1.4.5 This release contains vulnerability fixes for the following security advisories: GHSA-h842-vjwg-pxxx - Sudo-elevated arbitrary file deletion via extra.pie- installed-binary metadata in UninstallUsingUnlink GHSA-pm6p-666q-hvj5 - Sudo-elevated root code execution via TOCTOU between self- update verify and write GHSA-f67f-c344-cqqr - PIE self-update accepts any historically-attested pie.phar (rollback gap) GHSA-vcv4-gmjc-mxvq - php-ext.build-path traversal escapes PIE's vendor extract directory GHSA-8xmh-xrvp-hwrf - WindowsInstall::copyExtraFile lacks destination containment check (Windows-only path traversal) GHSA-p4j8-36rr-gjfq - Self-update attestation verification is scoped to --owner=php, not --repo=php/pie

Topics%20covered

Topics Covered

security advisory fedora code execution vulnerability sudo root access

Change Log

* Tue May 26 2026 Remi Collet - 1.4.5-1 - update to 1.4.5

References

Fedora Update Notification FEDORA-2026-e5d5fc359d 2026-06-04 01:48:27.004460+00:00 Name : pie Product : Fedora 44 Version : 1.4.5 Release : 1.fc44 URL : https://github.com/php/pie Summary : PHP Installer for Extensions Description : PIE (PHP Installer for Extensions). PIE can install an extension to any installed PHP version. A list of extensions that support PIE can be found on https://packagist.org/extensions. Documentation: /usr/share/doc/pie/docs/usage.md

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-e5d5fc359d' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Severity
critical
Lowest
Low
Medium
High
Critical

Name: pie
Product: Fedora 44
Version: 1.4.5
Release: 1.fc44
URL: https://github.com/php/pie
Summary: PHP Installer for Extensions

Topics%20covered

Topics Covered

security advisory fedora code execution vulnerability sudo root access

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here