It was in OpenSUSE Tumbleweed for a few days actually (RPM-based + rolling release + did the sshd patch). I was affected by it and it was fun watching the reliable ~100ms difference in `time /usr/sbin/sshd -h` with and without `TERM=foo`
Not sure of the relevance of this comment, can you elaborate? Were you the one that caught it?
Our balls were inches from the bandsaw. Systemd made it possible to compromise SSH through an unrelated, single-maintainer lib that wasn’t even a dependency.
Edit: never mind, I see you are a systemd crusader.
Arnavion|1 year ago
StimDeck|1 year ago
Edit: never mind, I see you are a systemd crusader.
wpm|1 year ago