moin moin,
someone patched a potential remote exploit into xz-utils. It seems it can
compromise sshd.
The exploit was added in February affecting versions 5.6.0 and 5.6.1, but
the exploiter has been around a while, so watch for updates.
https://www.openwall.com/lists/oss-security/2024/03/29/4
https://lists.debian.org/debian-security-announce/2024/msg00057.html
https://www.redhat.com/en/blog/urgent-security-alert-fedora-41-and-rawhide-users
ciao,
der.hans
--
#
https://www.SpiralArray.com https://www.PhxLinux.org
# "Eternal vigilance is not only the price of liberty;
# eternal vigilance is the price of human decency." -- Aldous Huxley, 1965
---------------------------------------------------
PLUG-discuss mailing list:
PLUG-discuss@lists.phxlinux.org
To subscribe, unsubscribe, or to change your mail settings:
https://lists.phxlinux.org/mailman/listinfo/plug-discuss
(text/plain)