The Changelog: Software Development, Open Source

By Changelog Media

Who in the world is Jia Tan? (News)

🔊 Play episode (9 min)
Direct episode link (https://op3.dev)
💬 Share episode

Published April 01, 2024 2:45pm

The big story right now is the recently uncovered backdoor in liblzma (aka XZ) – a relatively obscure compression library that happens to be a dependency of OpenSSH.

This incident is noteworthy for so many reasons: the exploit itself, how it was deployed, how it was found, what it says about our industry & how the community reacted. Let’s dig in!

Leave us a comment

Changelog++ members support our work, get closer to the metal, and make the ads disappear. Join today!

Sponsors:

Sentry – AI-powered Autofix debugs & fixes your code in minu...

Return to podcast

Response: 20 (Success), text/gemini

Original URL	gemini://rocketcaster.xyz/episode/20862290420
Status Code	20 (Success)
Content-Type	text/gemini; charset=utf-8