ZDNet

Patch now: This serious Linux vulnerability affects nearly all distributions

As security holes go, CVE-2023-4911, aka "Looney Tunables," isn't horrid. It has a Common Vulnerability Scoring System (CVSS) score of 7.8, which is ranked as important, not critical. On the other ...
GIGAZINE

It was discovered that a malicious backdoor was installed in the built-in compression tool 'XZ Utils' of Linux distributions such as Red Hat and Debian.

On March 29, 2024 local time, developer Andres Freund reported the existence of a malicious backdoor in XZ Utils. According to him, it was confirmed that malicious code was present in versions 5.6.0 ...
CRN

CISA, Red Hat Warn About Supply Chain Compromise Affecting Linux Distributions

A backdoor has been implanted in the two latest versions of XZ Utils — a set of data compression software tools and libraries ‘present in nearly every Linux distribution,’ according to Red Hat. Red ...
CRN

Red Hat Exec: Linux Supply Chain Hack Was Caught Quickly

The insertion of a backdoor into code used by most Linux distributions was discovered and fixed ‘before it posed a significant risk to the broader Linux community,’ says Red Hat’s Vincent Danen. The ...
ZDNet

Seeking the latest in Linux? There's a right way and a wrong way to use Distrowatch

When I first started using and writing about Linux in the late 1990s, there were just a few distributions to choose from, and even those were a bit hard to discover (unless you knew the right bulletin ...