Arch Linux Now Believes Malware Incident Under Control: More Than 1,500 Packages

Arch Linux 认为恶意软件事件已得到控制：超过 1,500 个软件包受影响

Arch Linux Now Believes Malware Incident Under Control: More Than 1,500 Affected Packages Written by Michael Larabel in Arch Linux on 12 June 2026 at 08:55 PM EDT. Arch Linux 认为恶意软件事件已得到控制：超过 1,500 个软件包受影响。本文由 Michael Larabel 撰写，发布于 Arch Linux 专栏，时间为 2026 年 6 月 12 日美国东部时间晚上 08:55。

The day started out with Arch Linux’s AUR user-contributed repository seeing more than 400 packages compromised with malware. Now in ending out the day they believe all affected commits have been addressed. But it ended up being more than 1,500 affected packages. 这一天开始时，Arch Linux 的 AUR 用户贡献存储库中有超过 400 个软件包被恶意软件入侵。而在这一天结束时，他们认为所有受影响的提交都已得到处理。但最终受影响的软件包数量超过了 1,500 个。

It was bad enough when finding out more than 400 AUR packages for Arch Linux users had been infected with malware but now that number has risen to around 900 a few hours ago and now in the end at more than 1,500 user-contributed packages. 起初发现有超过 400 个 AUR 软件包感染恶意软件就已经够糟糕了，但几个小时前这个数字上升到了约 900 个，而现在最终统计结果显示，受影响的用户贡献软件包已超过 1,500 个。

In an update a few hours ago, it was believed around 900 packages were infected by malware in this week’s incident. Then as of writing now, the last message in the thread over this security incident is noting that Arch Linux developers have deleted all the malicious commits they are aware of. 在几个小时前的一次更新中，人们认为本周的事件中约有 900 个软件包感染了恶意软件。截至目前撰稿时，关于此次安全事件的讨论帖中的最新消息指出，Arch Linux 开发人员已经删除了他们所知的所有恶意提交。

Cited was this list that puts the number of malware-affected packages at 1,579! Tons of software in this user-maintained Arch Linux user repository were impacted by this nasty security incident. 引用的一份清单显示，受恶意软件影响的软件包数量高达 1,579 个！这个由用户维护的 Arch Linux 存储库中有大量软件受到了此次严重安全事件的影响。

Even at 1,579 packages listed, that final updated noted, it’s a “list containing many (but not all) of the affected packages”. Ouch. 正如最后一次更新所指出的，即使清单上列出了 1,579 个软件包，这仍然只是“包含许多（但并非全部）受影响软件包的列表”。真糟糕。