Subj : Malicious packages uploaded to the Arch Linux AUR
To   : All
From : LWN.net
Date : Sat Jul 19 2025 22:45:07

Malicious packages uploaded to the Arch Linux AUR

Date:
Sat, 19 Jul 2025 21:36:25 +0000

Description:
The Arch Linux project has sent out an
advisory warning that a set of malicious packages, containing a remote
access trojan, were uploaded to the Arch User Repository (AUR).  The
affected packages were librewolf-fix-bin, firefox-patch-bin, and
zen-browser-patched-bin.  " We strongly encourage users that may have
installed one of these packages to remove them from their system and to
take the necessary measures in order to ensure they were not
compromised. "

======================================================================
Link to news story:
https://lwn.net/Articles/1030603/


--- Mystic BBS v1.12 A47 (Linux/64)
 * Origin: tqwNet UK HUB @ hub.uk.erb.pw (1337:1/100)

.