https://lists.archlinux.org/archives/list/aur-general@lists.archlinux.org/thread/7EZTJXLIAQLARQNTMEW2HBWZYE626IFJ/

lists.archlinux.org
Sign In Sign Up
Manage this list Sign In Sign Up
[                    ]

x

Keyboard Shortcuts

Thread View

  * j: Next unread message
  * k: Previous unread message
  * j a: Jump to all threads
  * j l: Jump to MailingList overview

[SECURITY] firefox-patch-bin, librewolf-fix-bin and
zen-browser-patched-bin AUR packages contain malware

older
Command in DLAGENTS works in shell...

Quentin MICHAUD

18 Jul 2025 18 Jul '25
6:53 p.m.

On the 16th of July, at around 8pm UTC+2, a malicious AUR package was
uploaded to the AUR. Two other malicious packages were uploaded by
the same user a few hours later. These packages were installing a
script coming from the same GitHub repository that was identified as
a Remote Access Trojan (RAT). The affected malicious packages are: -
librewolf-fix-bin - firefox-patch-bin - zen-browser-patched-bin The
Arch Linux team addressed the issue as soon as they became aware of
the situation. As of today, 18th of July, at around 6pm UTC+2, the
offending packages have been deleted from the AUR. We strongly
encourage users that may have installed one of these packages to
remove them from their system and to take the necessary measures in
order to ensure they were not compromised.

 
1 0
Show replies by date

Loading... Visit here for a non-javascript version of this page.
0
Age (days ago)
0
Last active (days ago)

List overview

Download

0 comments
1 participants

Add to favorites Remove from favorites

tags

participants (1)

  * 
    Quentin MICHAUD

HyperKitty Powered by HyperKitty version 1.3.12.