Pacman 7.0 Package Manager Released, Here’s What’s New

Arch's Pacman 7.0 package manager enhances security, introducing DownloadUser for safer file handling, fixing several key vulnerabilities, and more.
Pacman 7.0 Package Manager Released, Here's What's New

Arch Linux has rolled out the latest version of its beloved package manager, Pacman 7.0. Several new features and improvements have been introduced to enhance its functionality and user experience, so let’s look at them.

Pacman 7.0 Package Manager Highlights

The new version’s highlight is the addition of the DownloadUser configuration option. This setting allows heightened security by dropping privileges when downloading files and addressing common vulnerabilities associated with file permissions during downloads.

This means that files are now temporarily stored in a directory owned by DownloadUser, ensuring that the download process remains contained and does not write outside the designated area on Linux systems.

Moreover, for advanced users needing more control, Pacman 7.0 introduces the DisableSandbox option alongside a --disable-sandbox flag. This feature allows download write restrictions to be disabled, which is useful in scenarios where users operate within a secured or customized environment.

Pacman 7.0 also brings numerous fixes and enhancements that bolster the robustness and reliability of the package manager. Notably, it ensures that both database updates and signatures are retrieved from the same location, streamlining the update process and addressing issues previously noted with XferCommand.

It also replaces sprintf with snprintf, a safer alternative that helps prevent buffer overflowsโ€”a common security flaw in software development. Additionally, the update fixes a significant read-after-free bug when parsing configuration files and addresses issues with searching in non-NULL but empty file lists.

For developers and maintainers, makepkgโ€”the script responsible for compiling and building packages from sourceโ€”has received multiple updates. These include removing GITFLAGS support and enhancements in handling git sources to better support changes without depending on user configuration.

In addition, it also enhances the visibility of source-related errors with new return codes and prevents overriding of certain build environment variables, ensuring more predictable build processes.

Lastly, the pacman-key tool, crucial for security in package signing, now correctly handles permission checks for operations performed without root access, an essential update for maintaining security in multi-user environments.

Refer to theย full changelogย for detailed information about all the novelties and improvements that Pacman 7.0 brings. Arch users will get it as an update in the coming days when they run the well-known pacman -Syu command.

Bobby Borisov

Bobby Borisov

Bobby, an editor-in-chief at Linuxiac, is a Linux professional with over 20 years of experience. With a strong focus on Linux and open-source software, he has worked as a Senior Linux System Administrator, Software Developer, and DevOps Engineer for small and large multinational companies.

Think You're an Ubuntu Expert? Let's Find Out!

Put your knowledge to the test in our lightning-fast Ubuntu quiz!
Ten questions to challenge yourself to see if you're a Linux legend or just a penguin in the making.

1 / 10

Ubuntu is an ancient African word that means:

2 / 10

Who is the Ubuntu's founder?

3 / 10

What year was the first official Ubuntu release?

4 / 10

What does the Ubuntu logo symbolize?

5 / 10

What package format does Ubuntu use for installing software?

6 / 10

When are Ubuntu's LTS versions released?

7 / 10

What is Unity?

8 / 10

What are Ubuntu versions named after?

9 / 10

What's Ubuntu Core?

10 / 10

Which Ubuntu version is Snap introduced?

The average score is 68%

Related Posts