The vulnerability, identified as CVE-2024-3094, is present in xz versions 5.6.0 and 5.6.1. Malicious code embedded in these versions could provide unauthorized access to affected systems.
Red Hat strongly recommends that you stop using Fedora Rawhide until a fix is implemented. The distribution will be rolled back to a secure version of xz-5.4.x, after which users can continue working safely.
Although no confirmed risks have yet been identified for Fedora Linux 40 users, Red Hat recommends upgrading to the xz-5.4.x build as a precaution. The update containing the fix is currently being distributed through the normal update system. Users can speed up the update by following Red Hat’s instructions.
Source: Ferra
I am a professional journalist and content creator with extensive experience writing for news websites. I currently work as an author at Gadget Onus, where I specialize in covering hot news topics. My written pieces have been published on some of the biggest media outlets around the world, including The Guardian and BBC News.
