I have been looking into this, and it seems likely that this is a false
positive. The code "6606621" was
also used for a CUPS file, and according to VirusTotal only ClamAV
reported an issue. Information
here:
https://www.virustotal.com/#/file/e770c592101a051e7a8d45a618c06244c301a8a6bcdec3f4dcc73a27b425c37b/detection
Uploading to VirusTotal could help us figure out whether it's a valid
report in this case too,
though be aware that you will need to run non-free JS within your
browser to use the page.
On Wed, Jul 18, 2018 at 2:18 AM, Brett Gilio <[email protected]> wrote:
Lucid Eagle writes:
It has come to my attention that there may be a trojan in the
official
Parabola repos. As well as several other potential security issues
as
well. They may all just be false positives, but this one is rather
alarming.
Thank you for your email, we will look into this.
As for the PUAs, you can pretty much ignore them. You really do not
need
that setting to be enabled if you are not running an FTP server or
anything of the sort on your machine where "drive-by" attacks can
occur.
As for the Trojan, I will look into it and report back if nobody else
does in the morning.
--
Brett M. Gilio
Free Software Foundation, Member
https://parabola.nu | https://emacs.org
_______________________________________________
Dev mailing list
[email protected]
https://lists.parabola.nu/mailman/listinfo/dev
_______________________________________________
Dev mailing list
[email protected]
https://lists.parabola.nu/mailman/listinfo/dev
