Mingw-builds includes xz-utils unless the extra packages are disabled with --no-extras option. We are probably safe because we still use version 5.4.3 and the backdoor only runs on Linux. However, the build currently fails because the project page has been disable by GitHub.
Malicious code was discovered in xz-utils and GitHub took down the project page.
Mingw-builds includes xz-utils unless the extra packages are disabled with
--no-extras
option. We are probably safe because we still use version 5.4.3 and the backdoor only runs on Linux. However, the build currently fails because the project page has been disable by GitHub.