1Nis
Will using the xz binary trigger any call-home mechanism?
Many threads like this one on reddit are springing up, which is great for spreading awareness of a major CVE. But questionable advice like this occasionally worms its way in:
Check your version with
xz -V
in the terminal
Now, this obviously uses the xz
binary, which may trigger malicious behavior. Therein lies the question -- does simply using the binary present any kind of risk? E.g. is it known whether there's any call-home feature to this backdoor?