<pre style='margin:0'>

Ryan Carsten Schmidt (ryandesign) pushed a commit to branch master

in repository macports-ports.

</pre>

<p><a href="https://github.com/macports/macports-ports/commit/0533449245b662c906466e61bcdb958a22ad74c3">https://github.com/macports/macports-ports/commit/0533449245b662c906466e61bcdb958a22ad74c3</a></p>

<pre style="white-space: pre; background: #F8F8F8">The following commit(s) were added to refs/heads/master by this push:

<span style='display:block; white-space:pre;color:#404040;'>     new 0533449245b xz: Add comment explaining rollback

</span>0533449245b is described below

<span style='display:block; white-space:pre;color:#808000;'>commit 0533449245b662c906466e61bcdb958a22ad74c3

</span>Author: Ryan Carsten Schmidt <ryandesign@macports.org>

AuthorDate: Fri Mar 29 13:30:15 2024 -0500

<span style='display:block; white-space:pre;color:#404040;'>    xz: Add comment explaining rollback

</span>---

 archivers/xz/Portfile | 7 +++++--

 1 file changed, 5 insertions(+), 2 deletions(-)

<span style='display:block; white-space:pre;color:#808080;'>diff --git a/archivers/xz/Portfile b/archivers/xz/Portfile

</span><span style='display:block; white-space:pre;color:#808080;'>index 3d948b0897e..69e52cf0e88 100644

</span><span style='display:block; white-space:pre;background:#e0e0ff;'>--- a/archivers/xz/Portfile

</span><span style='display:block; white-space:pre;background:#e0e0ff;'>+++ b/archivers/xz/Portfile

</span><span style='display:block; white-space:pre;background:#e0e0e0;'>@@ -6,8 +6,11 @@ PortGroup       clang_dependency 1.0

</span> name            xz

 epoch           1

 version         5.4.6

<span style='display:block; white-space:pre;background:#ffe0e0;'>-revision        0

</span><span style='display:block; white-space:pre;background:#ffe0e0;'>-

</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+# DO NOT UPDATE past this version as upstream appears to be compromised and distributing malware.

</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+# https://lists.macports.org/pipermail/macports-dev/2024-March/045563.html

</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+# https://lists.debian.org/debian-security-announce/2024/msg00057.html

</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+# https://www.openwall.com/lists/oss-security/2024/03/29/4

</span><span style='display:block; white-space:pre;background:#e0ffe0;'>+# https://github.com/tukaani-project/xz/issues/92

</span> checksums       rmd160  b520491a5cae36c5295859d51eee5573a5953a1f \

                 sha256  913851b274e8e1d31781ec949f1c23e8dbcf0ecf6e73a2436dc21769dd3e6f49 \

                 size    2181925

</pre><pre style='margin:0'>

</pre>