overview for Hubi

“Given the activity over several weeks, the committer is either directly involved or there was some quite severe compromise of their system,” an official with distributor OpenWall wrote in an advisory. “Unfortunately the latter looks like the less likely explanation, given they communicated on various lists about the ‘fixes’” provided in recent updates. Those updates and fixes can be found here, here, here, and here.

On Thursday, someone using the developer's name took to a developer site for Ubuntu to ask that the backdoored version 5.6.1 be incorporated into production versions because it fixed bugs that caused a tool known as Valgrind to malfunction.

“This could break build scripts and test pipelines that expect specific output from Valgrind in order to pass,” the person warned, from an account that was created the same day.

One of maintainers for Fedora said Friday that the same developer approached them in recent weeks to ask that Fedora 40, a beta release, incorporate one of the backdoored utility versions.

“We even worked with him to fix the valgrind issue (which it turns out now was caused by the backdoor he had added),” the Ubuntu maintainer said.

He has been part of the xz project for two years, adding all sorts of binary test files, and with this level of sophistication, we would be suspicious of even older versions of xz until proven otherwise.

845

Reddit shares plunge almost 25% in two days, finish the week below first day close (www.cnbc.com)

submitted 3 months ago by Hubi@feddit.de to c/reddit@lemmy.world

173 comments fedilink

102

anlage_iel (feddit.de)

submitted 3 months ago by Hubi@feddit.de to c/ich_iel@feddit.de

29 comments fedilink

Werte Zuhausis,

da die Anlage-Maimais aktuell etwas überhand nehmen, gilt ab sofort eine temporäre Sperre für Pfosten dieser Art. Wir danken für Ihr Verständnis.

355

Russian TV airs fake video alleging Ukrainian involvement in terrorist attack, featuring Ukrainian official (www.pravda.com.ua)

submitted 3 months ago by Hubi@feddit.de to c/world@lemmy.world

49 comments fedilink

How was fugitive Kaitlin Armstrong caught? She answered U.S. Marshals' ad for a yoga instructor by Hubi in c/news@lemmy.world

[-] Hubi@feddit.de 167 points 5 months ago

Det. Jonathan Riley: … on the night of the murder, Kaitlin Armstrong's phone was not connected to a cell network.

Jonathan Vigliotti: Not connected?

Det. Jonathan Riley: Correct. So, whether she powered it off, whether she put in an airplane mode, uh, there's some something happened that her phone was not communicating with any cellphone towers.

Jonathan Vigliotti: Do you think this was on purpose?

Det. Jonathan Riley: Absolutely … in this day and age, if your phone is off and not connected to a network, you're either the victim of a crime or you're probably committing one.

That's kind of ...disturbing?

Reddit API blew up and now I run Linux? by Hubi in c/linux@lemmy.ml

[-] Hubi@feddit.de 275 points 5 months ago

I'm afraid it's terminal.

Gabe Newell on why game delays are okay: 'Late is just for a little while. Suck is forever.' by Hubi in c/games@sh.itjust.works

[-] Hubi@feddit.de 149 points 7 months ago

Interesting spin on the "A delayed game is eventually good, but a rushed game is forever bad"-quote.

The race for "Worst Dumpster Fire" is heating up. Everyone place your bets! by Hubi in c/memes@lemmy.ml

[-] Hubi@feddit.de 137 points 9 months ago

I feel like it's unfair to include TikTok as it had a clear headstart by being a dumpster fire since the very start.

Reddit beats film industry, won’t have to identify users who admitted torrenting by Hubi in c/technology@lemmy.world

[-] Hubi@feddit.de 217 points 11 months ago

I don't get the hate. I enjoy shitting on reddit as much as the next guy, but defending their user's right to remain anonymous in court has been one thing they've got a pretty solid record on.

When Lemmy.world and Lemmy.ml go down by Hubi in c/lemmyshitpost@lemmy.world

[-] Hubi@feddit.de 118 points 11 months ago

Diese Kommentarsektion ist nun Eigentum der Bundesrepublik Deutschland

Those of you who shower barehanded: Do you lather and then use your hand, or just shove the soap wherever it needs to go? by Hubi in c/asklemmy@lemmy.ml

[-] Hubi@feddit.de 312 points 11 months ago

who shower barehanded

There is another way...?

Deutsche Regierung umgeht Twitter-Beschränkungen by Hubi in c/dach@feddit.de

[-] Hubi@feddit.de 139 points 11 months ago

Ich verstehe nicht warum alle so zwanghaft bei einer ihren Nutzern gegenüber derart feindlich eingestellten Plattform wie Twitter bleiben wollen. Gerade bei der Bundesregierung überrascht es mich irgendwo, dass die eigene Präsenz auf einer Seite, die aktiv Nazis, russische Propaganda und Verschwörungstheorien bewirbt, nicht komplett abgeschaltet wird.

Die EU hat doch ihre eigenen Instanzen im Fediverse, warum wird nicht nach da gewechselt?

ich🤡iel by Hubi in c/ich_iel@feddit.de

[-] Hubi@feddit.de 161 points 1 year ago

ich🤡iel by Hubi in c/ich_iel@feddit.de

[-] Hubi@feddit.de 137 points 1 year ago* (last edited 1 year ago)

Kein Witz, ich habe heute morgen 3 (!) Posts mit NSFW-Inhalten auf ich_iel approved. Das war scheinbar gegen irgendeine Regel von der niemand was wusste. Einen Co-Mod im Sub hat es auch erwischt.

Editierung: Hier ist die Modmail die wir danach gekriegt haben:

r/de gibt Protest auf und kehrt zur Normalität zurück by Hubi in c/dach@feddit.de

[-] Hubi@feddit.de 125 points 1 year ago

Finde ich sehr schwach von den Mods. Wenn man beim ersten Anzeichen von Gegenwind direkt aufgibt, hätte man sich das Theater gleich ganz sparen können. Und das sage ich als jemand, der da jahrelang im Modteam gesessen hat.