What is Nostr?
openoms
npub14tq…hy62
2024-03-29 22:41:11

openoms on Nostr: Make sure to check on your Mac-s as well, the xz package is downgraded to xz 5.4.6 ...

Make sure to check on your Mac-s as well, the xz package is downgraded to xz 5.4.6 from 5.6.1 with the last brew upgrade.

Heads up if using the testing / unstable version of Debian, Ubuntu, NixOS or other Linux OS based on these, there is malicious code in the latest xz package: https://www.openwall.com/lists/oss-security/2024/03/29/4

>The malicious injection present in the xz versions 5.6.0 and 5.6.1
>Luckily xz 5.6.0 and 5.6.1 have not yet widely been integrated by linux distributions, and where they have, mostly in pre-release versions.

Running stable versions are fine:

₿ xz --version
xz (XZ Utils) 5.4.1
liblzma 5.4.1
Author Public Key
npub14tq8m9ggnnn2muytj9tdg0q6f26ef3snpd7ukyhvrxgq33vpnghs8shy62