Embed Notice

HTML Code

<blockquote style="position: relative; padding-left: 55px;"><section><a href="https://fosstodon.org/users/ggherdov/statuses/112229693314832374">Giovanni Gherdovich (ggherdov@fosstodon.org)'s status on Sunday, 07-Apr-2024 21:07:06 JST</a><a href="https://fosstodon.org/@ggherdov" title="ggherdov@fosstodon.org"><img src="https://gnusocial.jp/avatar/254276-48-20240407120706.webp" width="48" height="48" alt="Giovanni Gherdovich" style="position: absolute; left: 0; top: 0;">Giovanni Gherdovich</a><div><a href="https://hachyderm.io/@dalias/112226007215160061" rel="in-reply-to">in reply to</a><ul><li><li><a href="https://gnusocial.jp/user/80117" title="carnage4life@mas.to">Dare Obasanjo</a></li></ul></div></section><article><p><a href="https://hachyderm.io/@dalias">@dalias</a> <a href="https://mas.to/@carnage4life">@carnage4life</a> I see. Makes sense. Indeed Red Hat/Fedora caught it already on March 4th running valgrind, only the attacker managed to bamboozle them arguing there was nothing to see. Attacker then upgraded the malware to 5.6.1.<br><a href="https://bugzilla.redhat.com/show_bug.cgi?id=2267598" rel="nofollow noreferrer">https://bugzilla.redhat.com/show_bug.cgi?id=2267598</a> "Invalid writes regression in liblzma.so" You can't get away with such shenanigans forever.</p></article><footer><a rel="bookmark" href="https://gnusocial.jp/conversation/2905253#notice-5783920">In conversation</a><time datetime="2024-04-07T21:07:06+09:00" title="Sunday, 07-Apr-2024 21:07:06 JST">about 8 months ago</time> <span>from <span><a href="https://fosstodon.org/@ggherdov/112229693314832374" rel="external" title="Sent from fosstodon.org via ActivityPub">fosstodon.org</a></span></span><a href="https://fosstodon.org/@ggherdov/112229693314832374">permalink</a><h4>Attachments</h4><ol><li><article><header><div>No result found on File_thumbnail lookup.</div><h5><a href="https://bugzilla.redhat.com/show_bug.cgi?id=2267598">2267598 – Invalid writes regression in liblzma.so</a></h5><div></div></header><div></div><footer></footer></article></li><li><label><a rel="external" href="https://gnusocial.jp/attachment/2470535">Untitled attachment</a></label><br></li></ol></footer></blockquote>

Corresponding Notice

Embed this notice
Giovanni Gherdovich (ggherdov@fosstodon.org)'s status on Sunday, 07-Apr-2024 21:07:06 JSTGiovanni Gherdovich
in reply to
- Rich Felker
- Dare Obasanjo
@dalias @carnage4life I see. Makes sense. Indeed Red Hat/Fedora caught it already on March 4th running valgrind, only the attacker managed to bamboozle them arguing there was nothing to see. Attacker then upgraded the malware to 5.6.1.
https://bugzilla.redhat.com/show_bug.cgi?id=2267598 "Invalid writes regression in liblzma.so" You can't get away with such shenanigans forever.
In conversationabout 8 months ago from fosstodon.orgpermalink
Attachments
1. No result found on File_thumbnail lookup.
  2267598 – Invalid writes regression in liblzma.so
2. Untitled attachment

Public

Embed Notice

HTML Code

Corresponding Notice