Subj : Malicious packages uploaded to the Arch Linux AUR
To   : All
From : LWN.net
Date : Wed Jul 23 2025 06:40:07

The Arch Linux project has sent out an
advisory warning that a set of malicious packages, containing a remote
access trojan, were uploaded to the Arch User Repository (AUR).  The
affected packages were librewolf-fix-bin, firefox-patch-bin, and
zen-browser-patched-bin.  "We strongly encourage users that may have
installed one of these packages to remove them from their system and to
take the necessary measures in order to ensure they were not
compromised."

https://lwn.net/Articles/1030603/
--- SBBSecho 3.29-Linux
 * Origin: Palantir * palantirbbs.ddns.net * Pensacola, FL * (86:200/23)

.