Open lewisporter opened 6 months ago
For more details: https://lwn.net/Articles/967180/ https://www.openwall.com/lists/oss-security/2024/03/29/4 For users to check the xz version: type xz -V in a terminal If you don't know how to do that on a mac: https://support.apple.com/en-gb/guide/terminal/apd5265185d-f365-44cb-8b09-71a064a42125/mac
For more details: https://lwn.net/Articles/967180/ https://www.openwall.com/lists/oss-security/2024/03/29/4 For users to check the xz version: type xz -V in a terminal If you don't know how to do that on a mac: https://support.apple.com/en-gb/guide/terminal/apd5265185d-f365-44cb-8b09-71a064a42125/mac
don't use xz
to check xz
use this
apt list --installed|grep xz
Danger. The author of this PR is a known malicious actor.
I would err on the side of caution and assume that there is malicious code somewhere in this repo.
I doubt any of us are looking at these repositories with the intent of using them...
PR https://github.com/JiaT75/STest/pull/16 closes this.
For more details: https://lwn.net/Articles/967180/ https://www.openwall.com/lists/oss-security/2024/03/29/4 For users to check the xz version: type xz -V in a terminal If you don't know how to do that on a mac: https://support.apple.com/en-gb/guide/terminal/apd5265185d-f365-44cb-8b09-71a064a42125/mac
don't use
xz
to checkxz
use thisapt list --installed|grep xz
Bad. Not all distros use apt
. I use dnf
.
Danger. The author of this PR is a known malicious actor.
I would err on the side of caution and assume that there is malicious code somewhere in this repo.