Two reported Linux privilege escalation issues — a critical flaw in a tool called CrackArmor and a PackageKit local privilege escalation dubbed Pack2TheRoot — are unconfirmed at authoritative source tiers as of 2026-04-27. No CVE identifiers, CVSS scores, or patched versions have been published to NVD. The exposure estimate of 12.6 million servers for CrackArmor originates solely from Tier 3 aggregators and must not be cited in formal risk communications. Teams should monitor NVD and vendor advisories and apply behavioral detection in the interim rather than making emergency remediation decisions on unconfirmed intelligence.