Bonum Certa Men Certa

It's Not as Bad as Microsoft Wants You to Believe

posted by Roy Schestowitz on Mar 31, 2024

So it seems like a lot of the xz commotion (from Microsoft staff [1, 2]) serves to distract from Microsoft Exchange, and most users - well over 90% of them - don't use that version of xz anyway:

Debian Security Advisory DSA-5649-1: Right now no Debian stable versions are known to be affected.

The alarmist media coverage omits such important points. It also blames "Linux" instead of a project in Microsoft's GitHub (proprietary). Yes, systemd too.

And "since Poettering is the ultimate cause of the current PR and security disaster," an associate notes, "and he is employed at Microsoft officially on top of all the years he was working unofficial for them against Linux..."

So it's Microsoft at several levels.

Don't be too alarmed.

For instance, SLE*, RHEL, CentOS/Rocky/Oracle's Unbreakable, and Debian users are not impacted at all.

How many people even use a beta of Fedora or Tumbleweed or Arch's latest?

Control the narrative, control the world's communications/language:

SN on xz

LWN on xz

Microsoft HEARTbleeds Linux

Microsoft HEARTbleeds Linux.

If nobody has yet identified an intentional attempt at sabotage and a name of a person who deliberately did this, is this a "backdoor"? Or misreporting?

Microsoft, which has actual back doors (deliberate!), likes to misuse that term in relation to "Linux". We covered some examples several months ago, e.g. [1, 2].

Other Recent Techrights' Posts

Links 14/04/2024: Tesla and OpenAI (Microsoft) Layoffs Floated in the Media
Links for the day
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Saturday, April 13, 2024
IRC logs for Saturday, April 13, 2024
Gemini Links 13/04/2024: SEO Spam and ‘Broadband Nutrition Label’
Links for the day
Gemini Links 13/04/2024: GmCapsule 0.7 Released
Links for the day
Links 13/04/2024: Whistleblowers, OpenAI and Microsoft Leakers
Links for the day
'Our' Technology Inside the Home is Becoming Less Reliable and It Implements the Vision of Orwell's '1984' (Microphones and Cameras Inside Almost Every Room)
Technology controlled by who exactly?
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Friday, April 12, 2024
IRC logs for Friday, April 12, 2024
Google, FSFE & Child labor
Reprinted with permission from the Free Software Fellowship
Links 13/04/2024: Huawei and Loongson PCs, IBM Layoffs
Links for the day
Gemini Links 13/04/2024: Specification Changes and Metaverse Newbie
Links for the day
Links 12/04/2024: Big Brother in the Workplace and Profectus Browser Alpha 0.3
Links for the day
[Video] Trainline Finally Issues a Refund, But It Took 9 Days and Showed How 'Modern' Systems Fail Travelers
They treat people like a bunch of animals or cattle, not like valuable customers
WIPO UDRP D2024-0770 Debian vendetta response
Reprinted with permission from Daniel Pocock
Links 12/04/2024: Reporters Without Borders Rep Kicked Out of Hong Kong
Links for the day
Gemini Links 12/04/2024: Funny Thing, Manual Scripts, and More
Links for the day
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Thursday, April 11, 2024
IRC logs for Thursday, April 11, 2024