Debian: DSA-5649-1: xz-utils security update

March 29, 2024, 4:09 p.m. |

LinuxSecurity Advisories - Debian linuxsecurity.com

Andres Freund discovered that the upstream source tarballs for xz-utils, the XZ-format compression utilities, are compromised and inject malicious code, at build time, into the resulting liblzma5 library.

build code compression compromised debian dsa inject library malicious security security update update upstream utilities

Visit resource

More from linuxsecurity.com / LinuxSecurity Advisories - Debian

Debian: DSA-5702-1: gst-plugins-base1.0 Security Advisory Updates 23 hours ago | linuxsecurity.com

advisory arbitrary code code debian +20

Debian: DSA-5701-1: chromium Security Advisory Updates 1 day, 13 hours ago | linuxsecurity.com

advisory arbitrary code chromium code +13

Debian: DSA-5700-1: python-pymysql Security Advisory Updates 3 days, 13 hours ago | linuxsecurity.com

advisory bullseye debian distribution +12

Debian: DSA-5699-1: redmine Security Advisory Updates 1 week, 1 day ago | linuxsecurity.com

advisory application cross-site debian +14

Debian: DSA-5698-1: ruby-rack Security Advisory Updates 1 week, 1 day ago | linuxsecurity.com

advisory applications bullseye debian +16

Debian: DSA-5697-1: chromium Security Advisory Updates 1 week, 1 day ago | linuxsecurity.com

advisory arbitrary code aware chromium +19

Debian: DSA-5696-1: chromium Security Advisory Updates 1 week, 3 days ago | linuxsecurity.com

advisory arbitrary code chromium code +13

Debian: DSA-5695-1: webkit2gtk Security Advisory Updates 1 week, 3 days ago | linuxsecurity.com

advisory cve cve-2024 debian +7

Debian: DSA-5694-1: chromium Security Advisory Updates 2 weeks, 1 day ago | linuxsecurity.com

advisory arbitrary code chromium code +13

CyberSOC Technical Lead

@ Integrity360 | Sandyford, Dublin, Ireland

View on infosec-jobs.com

Cyber Security Strategy Consultant

@ Capco | New York City

View on infosec-jobs.com

Cyber Security Senior Consultant

@ Capco | Chicago, IL

View on infosec-jobs.com

Sr. Product Manager

@ MixMode | Remote, US

View on infosec-jobs.com

Corporate Intern - Information Security (Year Round)

@ Associated Bank | US WI Remote

View on infosec-jobs.com

Senior Offensive Security Engineer

@ CoStar Group | US-DC Washington, DC

View on infosec-jobs.com

all InfoSec news

Debian: DSA-5649-1: xz-utils security update

More from linuxsecurity.com / LinuxSecurity Advisories - Debian

Jobs in InfoSec / Cybersecurity

CyberSOC Technical Lead

Cyber Security Strategy Consultant

Cyber Security Senior Consultant

Sr. Product Manager

Corporate Intern - Information Security (Year Round)

Senior Offensive Security Engineer