<html><body style="word-wrap: break-word; -webkit-nbsp-mode: space; -webkit-line-break: after-white-space;" class=""><div class=""><br class=""></div><div class="">I received a security announcement on the Debian mailing list [1].  It appears versions 5.6.0 of XY Utils and later may be compromised.  I also found a discussion on Openwall [2].</div><div class=""><br class=""></div><div class=""><br class=""></div><div class="">[1]: <a href="https://lists.debian.org/debian-security-announce/2024/msg00057.html" class="">https://lists.debian.org/debian-security-announce/2024/msg00057.html</a></div><div class=""><br class=""></div><div class="">[2]: <a href="https://www.openwall.com/lists/oss-security/2024/03/29/4" class="">https://www.openwall.com/lists/oss-security/2024/03/29/4</a></div><div class=""><br class=""></div><div class=""><br class=""></div><div class="">I'm afraid that's all I know.  Just a heads-up.</div><div class=""><br class=""></div></body></html>