Chimera Linux on Nostr: a major xz/liblzma backdoor was revealed today: the positive part is that we are not ...
a major xz/liblzma backdoor was revealed today:
https://www.openwall.com/lists/oss-security/2024/03/29/4the positive part is that we are not affected (several compile-time preconditions are not met for the backdoor to even get compiled in, such as gcc compiler, gnu linker, ifunc support, linux-gnu triple) and neither is our infrastructure (there are a couple debian servers, still on xz 5.4)
that said, everyone check their systems (whatever they are) and stay safe :)
Published at
2024-03-29 17:57:56Event JSON
{
"id": "160f9fee59efedcd655de9b1931956dd5a80252ab32f2dcb3f6954d65bcf834b",
"pubkey": "76c1d8cdf915c4b0ececdbdb60ea680e9a1b3ce8fe5c00ca0943a07c65a4ccc2",
"created_at": 1711731476,
"kind": 1,
"tags": [
[
"proxy",
"https://floss.social/users/chimera_linux/statuses/112180034039048148",
"activitypub"
]
],
"content": "a major xz/liblzma backdoor was revealed today: https://www.openwall.com/lists/oss-security/2024/03/29/4\n\nthe positive part is that we are not affected (several compile-time preconditions are not met for the backdoor to even get compiled in, such as gcc compiler, gnu linker, ifunc support, linux-gnu triple) and neither is our infrastructure (there are a couple debian servers, still on xz 5.4)\n\nthat said, everyone check their systems (whatever they are) and stay safe :)",
"sig": "71e65fbf1a42783fcb880fb4715604775bab013227fee69b4429db3ba204925ebf03ead3e7c1ac5572d05e5df2ab31a9651fab8dc8f1892ba54e1024fa5ea1a1"
}