309
love is in the air? (lemy.lol)
submitted 7 months ago by ngn@lemy.lol to c/memes@lemmy.ml
45 comments fedilink hide all child comments
you are viewing a single comment's thread
view the rest of the comments
[-] wildbus8979@sh.itjust.works 6 points 7 months ago

https://archlinux.org/news/the-xz-package-has-been-backdoored/

[-] HopFlop@discuss.tchncs.de 8 points 7 months ago

Yeah but the backdoor does not work on Arch (as far as we currently know). It relies on a linking of libraries that Arch doesnt do by default.

[-] 30p87@feddit.de 7 points 7 months ago

And as https://www.openwall.com/lists/oss-security/2024/03/29/4 says:

"These conditions include targeting only x86-64 linux: [...] Building with gcc and the gnu linker [...] Running as part of a debian or RPM package build:"

I'm not an expert of course.

[-] bravesilvernest@lemmy.ml 2 points 7 months ago

Holy shit that was a hell of a dive. And no wonder the dude got it working, he was just pounding those "test and translation" commits

this post was submitted on 30 Mar 2024
309 points (89.7% liked)

Memes

45660 readers
1727 users here now

Rules:

  1. Be civil and nice.
  2. Try not to excessively repost, as a rule of thumb, wait at least 2 months to do it if you have to.

founded 5 years ago
MODERATORS
gary_host_laptop@lemmy.ml
sexy_peach@feddit.de
cyclohexane@lemmy.ml
cypherpunks@lemmy.ml