Regarding the #xz / #liblzma backdoor, quoting the original mail https://seclists.org/oss-sec/2024/q1/268
"Debian and several other distributions patch openssh to support systemd notification, and libsystemd does depend on lzma."
"it is likely the backdoor can only work on glibc based systems."
So, if you are using a non-systemd distro ( e.g. #Devuan, #Artix, #Void, #Slackware) or a non-glibc distro (e.g. #Alpine) you are most likely not affected, right?
#cve20243094
@Haydar correct Slackware is not affected. The backdoor gets added on systemd-based distros when compiling the distro-native package.