GLSA-202403-04 : XZ utils: Backdoor in release tarballs

The remote host is affected by the vulnerability described in GLSA-202403-04 XZ utils: Backdoor in release tarballs - Malicious code was discovered in the upstream tarballs of xz, starting with version 5.6.0. Through a series of complex obfuscations, the liblzma build process extracts a prebuilt...

XZ utils: Backdoor in release tarballs

Background XZ Utils is free general-purpose data compression software with a high compression ratio. Description A backdoor has been discovered in XZ utils. Please review the CVE identifier referenced below for details. Impact Our current understanding of the backdoor is that is does not affect...