Edera uncovers TARmageddon (CVE-2025-62518), a Rust async-tar RCE flaw exposing the real dangers of open-source abandonware and supply chain security.
  • MTK@lemmy.worldEnglish
    1·
    21 hours ago

    The title seems like a stupid attack on open source… Because closed source abandonware is not a security issue??

    At least open source projects can be forked and updated, a closed source system would leave you with only the option of choosing between the software or security.