moin moin,

someone patched a potential remote exploit into xz-utils. It seems it can
compromise sshd.

The exploit was added in February affecting versions 5.6.0 and 5.6.1, but
the exploiter has been around a while, so watch for updates.

https://www.openwall.com/lists/oss-security/2024/03/29/4

https://lists.debian.org/debian-security-announce/2024/msg00057.html

https://www.redhat.com/en/blog/urgent-security-alert-fedora-41-and-rawhide-users

ciao,

der.hans
-- 
#  https://www.SpiralArray.com   https://www.PhxLinux.org
#  "Eternal vigilance is not only the price of liberty;
#  eternal vigilance is the price of human decency." -- Aldous Huxley, 1965
---------------------------------------------------
PLUG-discuss mailing list: PLUG-discuss@lists.phxlinux.org
To subscribe, unsubscribe, or to change your mail settings:
https://lists.phxlinux.org/mailman/listinfo/plug-discuss