[tor-relays] Backdoor in upstream xz/liblzma leading to ssh server compromise

Sat Mar 30 00:02:54 UTC 2024

Just wanted to bring this to everyone’s attention if you hadn’t seen it already.
Developer discovered a backdoor in xz-utils
https://www.openwall.com/lists/oss-security/2024/03/29/4

--
Sent from Canary (https://canarymail.io)

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.torproject.org/pipermail/tor-relays/attachments/20240329/4307d292/attachment-0001.htm>