• Delilah (She/Her)@lemmy.blahaj.zone
    link
    fedilink
    English
    arrow-up
    35
    ·
    8 months ago

    Even if you’re using debian 12 bookworm and are fully up to date, you’re still running [5.4.1].

    The only debian version actually shipping the vulnerable version of the package was sid, and being a canary for this kind of thing is what sid is for, which it’s users know perfectly well.

    • piefedderatedd@piefed.social
      link
      fedilink
      arrow-up
      2
      ·
      8 months ago

      There was a comment on Mastodon or Lemmy saying that the bad actor had been working with the project for two years so earlier versions may have malicious code as well already.

      • dan@upvote.au
        link
        fedilink
        arrow-up
        5
        ·
        8 months ago

        They did but the malware wasn’t fully implemented yet. They spent quite a while implementing it, I guess to try and make it less obvious.