Welcome to Incremental Social! Learn more about this project here!
Check out lemmyverse to find more communities to join from here!

claudiom

@claudiom@blendit.bsd.cafe

This profile is from a federated server and may be incomplete. Browse more on the original instance.

Backdoor found in widely used Linux utility breaks encrypted SSH connections | Ars Technica (arstechnica.com)

TL;DR there was a backdoor found in the XZ program. All major distros have been updated but it is recommended that you do a fresh install on systems that are exposed to the internet and that had the bad version of the program. Only upstream distros were affected.

claudiom ,

For those on Android running Termux, it is also affected. Just checked my version of xz-utils and it was 5.6.1. Running "pkg upgrade" will roll back to version 5.4.5 (tagged as "5.6.1+really5.4.5" for both liblzma and xz-utils packages).

claudiom ,

Yeah, that's what mine "upgraded" to. All that update does is rollback to 5.4.5.

  • All
  • Subscribed
  • Moderated
  • Favorites
  • random
  • incremental_games
  • meta
  • All magazines
    •