Possibly linux@lemmy.zip to Linux@lemmy.mlEnglish · 1 年前XZ backdoor in a nutshelllemmy.zipimagemessage-square157fedilinkarrow-up11.23Karrow-down110
arrow-up11.22Karrow-down1imageXZ backdoor in a nutshelllemmy.zipPossibly linux@lemmy.zip to Linux@lemmy.mlEnglish · 1 年前message-square157fedilink
minus-squarePossibly linux@lemmy.zipOPlinkfedilinkEnglisharrow-up1·1 年前It is fine to use them just know how they work and check the commit log. That of course requires you to pull from got instead of a tarball
minus-squarebillgamesh@lemmy.mllinkfedilinkarrow-up1·1 年前this was well hidden. not sure anyone would have spotted this by checking commit log
minus-squarebillgamesh@lemmy.mllinkfedilinkarrow-up1·edit-21 年前i’m not an expert, but my reading was that it was hidden in a binary used for testing EDIT: oh yeah, i see what you mean
It is fine to use them just know how they work and check the commit log.
That of course requires you to pull from got instead of a tarball
this was well hidden. not sure anyone would have spotted this by checking commit log
It was hidden in the Tarball
i’m not an expert, but my reading was that it was hidden in a binary used for testing EDIT: oh yeah, i see what you mean