The xz package that has already entered the current F40 pre-release versions/variants and rawhide contains malicious code. This does NOT affect users of the Fedora releases (F38, F39 are thus not affected), but all users who use already F40 pre-release versions/variants or rawhide shall read this: Article: CVE details: https://access.redhat.com/security/cve/CVE-2024-3094 Be aware that this is CVE criticality 10: this is the highest risk factor. Also be aware that the header of the RH arti...
  • 56!
    240·
    7 months ago

    I’m on Void, and I had the malicious version installed. Updating the system downgraded xz to 5.4.6, so it seems they are on it. I’ll be watching discussions to decide if my system might still be compromised.

    • AuliEnglish
      10·
      7 months ago

      Did you have SSH open to the internet?

      • 56!
        20·
        7 months ago

        No, this is just my personal laptop. I don’t even have access to an IP address I could enable port-forwarding on.

      • arouene
        10·
        7 months ago

        @Auli @56_ I have SSH open on internet on ipv6, I’m safe. Do you think VPN open on the internet is safer ? (Think twice CVE-2024-21762)

    • Possibly linuxEnglish
      11·
      7 months ago

      I would nuke it and rebuild. If nothing else it is a good test of backups