*>Ironic considering security is often advertised as a feature of rolling releas... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		javajosh on March 30, 2024 \| parent \| context \| favorite \| on: Backdoor in upstream xz/liblzma leading to SSH ser... >Ironic considering security is often advertised as a feature of rolling release distros. Security is a feature of rolling release. But supply-chain attacks like this are the exception to the rule.

yreg on March 30, 2024 [–]

Isn't that what security-updates-only is for?

This particular backdoor is not shipped inside of a security patch, right?

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact