gentoo auto-resync : 24:04:2024 - 23:59:27

author: V3n3RiX <venerix@koprulu.sector> 2024-04-24 23:59:27 +0100
committer: V3n3RiX <venerix@koprulu.sector> 2024-04-24 23:59:27 +0100
commit: b987a550f067c3da93b0664cf1fdc8a624c0aa38 (patch)
tree: 9ad1767fad656d26471a81af6bac8400a1c75218 /profiles/package.mask
parent: e3f21c8aff8a76afe3423721c437a088e9232840 (diff)
1 files changed, 5 insertions, 2 deletions
diff --git a/profiles/package.mask b/profiles/package.mask
index 933860275903..630369576eeb 100644
--- a/profiles/package.mask
+++ b/profiles/package.mask
@@ -268,11 +268,14 @@ dev-python/nspektr
 games-sports/gracer
 
 # Sam James <sam@gentoo.org> (2024-03-28)
-# Newer releases were signed by a potentially compromised upstream maintainer.
+# Newer 5.4.x releases were signed by a potentially compromised upstream maintainer.
 # There is no evidence that these releases contain malicious code, but masked
 # out of an abundance of caution. See bug #928134.
 sec-keys/openpgp-keys-jiatan
->=app-arch/xz-utils-5.4.3
+~app-arch/xz-utils-5.4.3
+~app-arch/xz-utils-5.4.4
+~app-arch/xz-utils-5.4.5
+~app-arch/xz-utils-5.4.6
 
 # Sam James <sam@gentoo.org> (2024-03-28)
 # Backdoor discovered in release tarballs. DOWNGRADE NOW.
author	V3n3RiX <venerix@koprulu.sector>	2024-04-24 23:59:27 +0100
committer	V3n3RiX <venerix@koprulu.sector>	2024-04-24 23:59:27 +0100
commit	b987a550f067c3da93b0664cf1fdc8a624c0aa38 (patch)
tree	9ad1767fad656d26471a81af6bac8400a1c75218 /profiles/package.mask
parent	e3f21c8aff8a76afe3423721c437a088e9232840 (diff)