Andres Freund has discovered that the upstream XZ repository and the XZ tarballs have been backdoored. The majority of Linux distributions that are affected by this issue are either very new or rolling release distributions. A brief summary of all the most recent updates is as follows:
XZ-Utils Security Update for Debian Testing
XZ Utils Security Advisory for Gentoo
XZ Security Update for Arch Linux
XZ-Utils Update for Kali Linux
XZ Security Issue in Fedora Linux 40 and Rawhide
A vulnerability in Kali Linux, affecting xz-utils 5.6.0-0.2, was triggered between March 26th and 29th. Users who updated before March 29th should apply the latest updates, while those not updated before March 26th are unaffected.
Core Update 185 of IPFire 2.29 has been made available for testing. Bug fixes and package updates have been implemented in the most recent version of the IPFire intrusion prevention system (IPS). The Intrusion Prevention System, Suricata 7, now supports HTTP/2, deflate compression, byte-ranges, TLS client certificates, IKEv1, PostgreSQL protocol, BitTorrent parser, QUICv1, and GQUIC. Additionally, it is compatible with more than one protocol. As an additional measure to prevent damage, Suricata is locked down with Linux Landlocked. Additionally, it is slightly more memory efficient.
Here is a roundup of last week's Linux security updates for AlmaLinux, Debian GNU/Linux, Fedora Linux, Oracle Linux, Qubes OS, Red Hat Enterprise Linux, Slackware Linux, SUSE Linux, and Ubuntu Linux.
In a blog post, Alan Pope discussed a scam that is currently taking place in the Canonical Snap store, which involves the use of fake Bitcoin wallet applications. Exodus-build-96567 is the name of the application that is published by the publisher digisafe00000, which appears to be not very legitimate. The application can be found in searches conducted within the desktop graphical storefront known as "Ubuntu Software" or "App Centre." However, the app does not provide any information about its functionality, despite the fact that it claims to "Secure, Manage, and Swap all of your favorite assets."
Here is a roundup of last week's Linux security updates for AlmaLinux, Debian GNU/Linux, Fedora Linux, Oracle Linux, Qubes OS, Red Hat Enterprise Linux, Rocky Linux, Slackware Linux, SUSE Linux, and Ubuntu Linux.
IPFire 2.29 - Core Update 184 has been released. IPFire is a powerful and professional open-source firewall solution.
Here is a roundup of last week's Linux security updates for AlmaLinux, Debian GNU/Linux, Fedora Linux, Gentoo Linux, Oracle Linux, Red Hat Enterprise Linux, Slackware Linux, SUSE Linux, and Ubuntu Linux.
Here is a roundup of last week's Linux security updates for AlmaLinux, CentOS, Debian GNU/Linux, Fedora Linux, Gentoo Linux, Oracle Linux, Red Hat Enterprise Linux, Slackware Linux, SUSE Linux, and Ubuntu Linux.
Here is a roundup of last week's Linux security updates for AlmaLinux, CentOS, Debian GNU/Linux, Fedora Linux, Gentoo Linux, Oracle Linux, Red Hat Enterprise Linux, Slackware Linux, SUSE Linux, and Ubuntu Linux.
Here is a roundup of last week's Linux security updates for AlmaLinux, Debian GNU/Linux, Fedora Linux, Oracle Linux, Red Hat Enterprise Linux, Rocky Linux, Slackware Linux, SUSE Linux, and Ubuntu Linux.
IPFire 2.29 Core Update 184, is available for testing. IPFire is a powerful and professional open-source firewall solution.
IPFire 2.29 - Core Update 183 has been released. IPFire is a powerful and professional Open Source firewall solution.
Here is a roundup of last week's Linux security updates for AlmaLinux, CentOS, Debian GNU/Linux, Fedora Linux, Gentoo Linux, Oracle Linux, Red Hat Enterprise Linux, Slackware Linux, SUSE Linux, and Ubuntu Linux.
Here is a roundup of last week's Linux security updates for AlmaLinux, Debian GNU/Linux, Fedora Linux, Gentoo Linux, Oracle Linux, Qubes OS, Red Hat Enterprise Linux, Slackware Linux, SUSE Linux, and Ubuntu Linux.
Here is a roundup of last week's Linux security updates for AlmaLinux, CentOS, Debian GNU/Linux, Fedora Linux, Gentoo Linux, Oracle Linux, Qubes OS, Red Hat Enterprise Linux, Slackware Linux, SUSE Linux, and Ubuntu Linux.
IPFire 2.29 - Core Update 183 is available for testing. IPFire is a powerful and professional open-source firewall solution.
Here is a roundup of last week's Linux security updates for AlmaLinux, CentOS, Debian GNU/Linux, Fedora Linux, Gentoo Linux, Oracle Linux, Red Hat Enterprise Linux, Rocky Linux, Rocky Linux, SUSE Linux, and Ubuntu Linux.
Here is a roundup of last week's Linux security updates for AlmaLinux, CentOS, Debian GNU/Linux, Fedora Linux, Gentoo Linux, Oracle Linux, Red Hat Enterprise Linux, Rocky Linux, SUSE Linux, and Ubuntu Linux.
Here is a roundup of last week's Linux security updates for AlmaLinux, Debian GNU/Linux, Fedora Linux, Gentoo Linux, Oracle Linux, Red Hat Enterprise Linux, SUSE Linux, and Ubuntu Linux.
