























The Arch Linux User Repository "AUR" was hit by a large-scale malware campaign this week with more than 400 of these user-supplied packages being compromised.
Since yesterday Arch Linux maintainers have been working to reset/delete all of the malicious content and banning affected accounts. Over 400 packages are believed impacted by this latest malware campaign for Arch Linux's AUR. Again, to be completely clear, this just is affecting AUR packages and not the official Arch Linux packages.
This Arch Linux mailing list thread goes over some of the affected AUR packages and the impact. There is also more information and discussion on this significant AUR event via the CachyOS Forums.
Update: Arch Linux Now Believes Malware Incident Under Control: More Than 1,500 Affected Packages
此内容由惯性聚合(RSS阅读器)自动聚合整理,仅供阅读参考。 原文来自 — 版权归原作者所有。