A new security article has been published: Security issue with XZ after repository and tarballs were compromised
Security issue with XZ after repository and tarballs were compromised
Andres Freund has discovered that theĀ upstream XZ repository and the XZ tarballs have been backdoored. The majority of Linux distributions that are affected by this issue are either very new or rolling release distributions. A brief summary of all the most recent updates is as follows: XZ-Utils Security Update for Debian Testing XZ Utils Security Advisory for Gentoo XZ Security Update for Arch Linux XZ-Utils Update for Kali Linux XZ Security Issue in Fedora Linux 40 and Rawhide
