In breaking news that dropped just after our weekly security column went live, a backdoor has been discovered in the xz package, that could potentially compromise SSH logins on Linux systems.

There is a gaping security hole in the widespread XZ utils that could potentially be misused to inject malicious code.

Kettle It's been about a week since the shock discovery of a hidden and truly sophisticated backdoor in the xz software library ... control over the box via its SSH daemon. Though the dependency ...