security: check xc-utils versions
der.hans
PLUGd at LuftHans.com
Fri Mar 29 13:18:58 MST 2024
moin moin,
someone patched a potential remote exploit into xz-utils. It seems it can
compromise sshd.
The exploit was added in February affecting versions 5.6.0 and 5.6.1, but
the exploiter has been around a while, so watch for updates.
https://www.openwall.com/lists/oss-security/2024/03/29/4
https://lists.debian.org/debian-security-announce/2024/msg00057.html
https://www.redhat.com/en/blog/urgent-security-alert-fedora-41-and-rawhide-users
ciao,
der.hans
--
# https://www.SpiralArray.com https://www.PhxLinux.org
# "Eternal vigilance is not only the price of liberty;
# eternal vigilance is the price of human decency." -- Aldous Huxley, 1965
More information about the PLUG-discuss
mailing list